Pros and cons of today
Upcoming SlideShare
Loading in...5
×
 

Pros and cons of today

on

  • 387 views

 

Statistics

Views

Total Views
387
Views on SlideShare
387
Embed Views
0

Actions

Likes
0
Downloads
0
Comments
0

0 Embeds 0

No embeds

Accessibility

Categories

Upload Details

Uploaded via as Microsoft Word

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

    Pros and cons of today Pros and cons of today Document Transcript

    • PROS AND CONS OF TODAY’S SURVEILLANCE (PROGRESS OF SURVEILLANCE TECHNOLOGY) Posted by Andrew Arismunandar in ITGS 11 on Friday, October 4th, 2013 at 5:54 am Surveillance has developed through many changes all over the years. From human cautioness to technology that can watch your every move. Surveillance has it’s merits as it helps authority to capture criminals and terrorists, from recent tragedies. However surveillance has changed into something more advanced, as it has the ability to track your personal information such as friends, family and even your bank account. This has been proven with the recent NSA leak, as the NSA has the technology to have full information of individuals from the US and even other countries. Technology has taken surveillance into the next level. This is the peak of surveillance where we question ourselves whether surveillance is actually necessary, as power of the technology that was leaked by Edward Snowden has shown. Right now it shows two ways of how surveillance will be used years from today. The benefit of using surveillance with current technology is that if it is used correctly, the NSA has the ability to predict a terrorist attack thus preventing innocent lives lost (similar to the Precrime system in the film Miniority Report). As previous renditions of surveillance such as CCTV cameras will only assist identifying criminals right after they have finished the job. The government spying on your privacy won’t be problem unless you’re a criminal trying to harm others. After all it is the government’s job to make sure that everyone is safe and this is them taking the next step. The NSA knows that everyone is scared when they know that the government has more access to our privacy than ever before and they think it is for the good of the public for them not to know. But they should’ve known better that it is for the public to decide, as the people’s voice counts as well not just the government. But yet again what about the first time when they announced the CCTV cameras? Wouldn’t people freak out as much as they did today, when they know someone is watching your every move? But what about now? We see CCTV cameras everyday and it doesn’t bother so much since we are comfortable by now. Not to mention it has helped the police to capture terrorists a lot easier and much efficiently before they can initiate their next attack. It could be the same case with the PRISM surveillance program and that it will take time for the public to get used to. Since we’re talking about how the PRISM technology is taken to a larger scale, what about PRISM technology in a smaller scale? If you pay attention enough, there is an application called “Remote Desktop”. This allows an admin to watch individual computer activities and can even control the computer itself by manipulating with the controls of that particular computer and even block the computer itself. Although it only works with a particular server, the computer to be online and also if the admin has permission from the computer itself. This technology can be very useful to track students or employees to make sure that they are working on their computers. It is stricter but it helps people to be productive and make sure that they work. Even if they somewhat reveal their personal information but should they bother to do such a thing when they are working or aware that they are currently watched by someone superior? This has been proven that we are slowly going into the next stage of surveillance.
    • However there are disadvantages with such advanced technology. That is the ones who wields it. Admins are humans too, which means that there are chances for them to abuse the technology for his or her’s personal needs. The problem arises when they have the ability to cause damage as well as much as what they are trying to prevent. Such as that admins can steal through the use of their personal information or to plan out a perfect murder by using the information that they collected throughout their stalking. It’s even worse the fact that the government is using it as well. When someone with authority wields more power over the people the damage done could be much worse. Such as corruption will be much more efficient and also blackmail. But I digress. These advantages will be something that we will overcome overtime. We are aware of this issue and so as the government. Although it is good to cautious about our government, but yet again there are honest people as well that are working within the government. Honest men like Edward Snowden will leak important information to the public when necessary, the point is that there are men like Edward Snowden that works for the government, which is something that we need to remember as well. Also to keep in mind that as our technology moves forward, we might use AIs instead to do the surveillance work. If you’re thinking that a rebellious AI in movies such as Eagle Eye or 2001: Space Odyssey might happen, it will the matter of intelligence we put in the machine (which is another topic entirely and for another discussion). However it is possible to make things simpler such as having the AI report on someone that is going to Facebook instead of working on their school work or office work, well when it comes to a smaller scale that is. Only the future can tell for now for what the government will do with the PRISM program. In conclusion I would say that this is the next step of surveillance, it’s either we move forward to a possible better future. I do realize that people are afraid of how advanced what we created has become, but it is necessary for people to take risks in order to move forward. So I firmly believe that surveillance technology will bring more benefit than good. Donate for the Cryptome archive of files from June 1996 to the present 24 February 2000: Link to Presentation and Analysis Volume 1/5, by Peggy Becker, October 1999. Volume 1 re below. 20 August 1999 Source: Hardcopy of 61 pages. Thanks to Sten Linnarsson. This is part 1 of 4 of "Development of Surveillance Technology and Risk of Abuse of Economic Information technologies of political control)."
    • Part 2: "The legality of the interception of electronic communications: A concise survey of the principal legal iss international, European and national law," by Prof. Chris Elliott: http://cryptome.org/dst-2.htm Part 3: "Encryption and cryptosystems in electronic surveillance: a survey of the technology assessment issues," http://cryptome.org/dst-3.htm Part 4: "The state of the art in Communications Intelligence (COMINT) of automated processing for intelligence broadband multi-language leased or common carrier systems, and its applicability to COMINT targeting and sel recognition," by Duncan Campbell: http://www.iptvreports.mcmail.com/stoa_cover.htm [dead] Campbell's report: http://cryptome.org/jya/ic2000.zip (981KB) EUROPEAN PARLIAMENT SCIENTIFIC AND TECHNOLOGICAL OPTIONS ASSESSMENT STOA DEVELOPMENT OF SURVEILLANCE TECHNOLOGY AND RISK OF ABUSE OF ECONOMIC INFORMATION (An appraisal of technologies of political control) Part 1/4 The perception of economic risks arising from the potential vulnerability of electronic commercial media to interception Survey of opinions of experts Interim Study Working document for the STOA Panel Luxembourg, May 1999 PE 168.184/Int.St./part 1/4
    • Directorate General for Research Cataloguing data: Title: Part 1/4 of: DEVELOPMENT OF SURVEILLANCE TECHNOLOGY AND RISK OF ABUSE OF ECONOMIC INFORMATION (An appraisal of technologies of political control) Workplan Ref.: EP/IV/B/STOA/98/1401 Publisher: European Parliament Directorate General for Research Directorate A The STOA Programme Author: Mr Nikos BOGONIKOLOS - ZEUS E.E.I.G. Editor: Mr Dick HOLDSWORTH, Head of STOA Unit Date: May 1999 PE number: PE 168. 184/Int.St./1/4 This document is a working Document for the 'STOA Panel'. It is not an official publication of STOA. This document does not necessarily represent the views of the European Parliament. CONTENTS PART A: OPTIONS Introduction General overview of the outcome of the survey (interim stage) Views on privacy collected from the survey General privacy issue The market for privacy
    • The role of industry The need for European legislation Options for action on surveillance and privacy PART B: ARGUMENTS AND EVIDENCE General Examples of Abuse of Economic Information PART C: TECHNICAL FILE 1. INTRODUCTION Surveillance and Privacy Dataveillance Techniques Risks Inherent in Data Surveillance Controls 2. SURVEILLANCE: TOOLS AND TECHNIQUES - Current technologies 1. Visual Surveillance 2. Audio Surveillance 3. Phone Tapping and Encryption 4. Voice and Word Pattern Recognition 5. Proximity Smart Cards 6. Transmitter Location 7. E-mail at Workplace 8. Electronic Databases 9. The Internet 3. THE USE OF SURVEILLANCE TECHNOLOGY SYSTEMS FOR THE TRANSMISSION AND COLLECTION OF ECONOMIC INFORMATION 3.1 CALEA System 3.2 ECHELON Connection 3.3 Inhabitant identification Schemes 4. THE NATURE OF ECONOMIC INFORMATION SELECTED BY SURVEILLANCE TECHNOLOGY SYSTEMS A. From telecommunication systems B. From new information technologies (Internet) C. Some examples of data collection on the Internet 5. PROTECTION FROM ELECTRONIC SURVEILLANCE
    • A. Encryption (Cryptography) Private sector initiatives B. Key - recovery Encryption and the global information infrastructure Key-Recovery: Requirements and proposals 6. SURVEILLANCE TECHNOLOGY SYSTEMS IN LEGAL AND REGULATORY CONTEXT A. Privacy regulation Multinational data protection measures Data protection directive in Europe Privacy regulation in the United States B. Protection of Privacy in the telecommunications sector C. Cryptography Cryptography policy in USA Cryptography policy guidelines from OECD E. U. cryptography policy Other national and international activities related to cryptography policy D. Key recovery E. European Initiatives DLM-FORUM- Electronic Records Promoting Safe Use of Internet REFERENCES PART A: OPTIONS Introduction The present study, 'Development of surveillance technology and risk of abuse of economic information' presents the interim results from a survey of the opinions of experts, together with additional research and analytical material by the authors. It has been conducted by ZEUS E.E.I.G. as part of a technology assessment project on this theme initiated by STOA in 1998 at
    • the request of the Committee on Civil Liberties and Internal Affairs of the European Parliament. This STOA project is a follow-up to an earlier one entitled: "An appraisal of technologies of political control" conducted for the same Committee. The earlier project resulted in an Interim Study (PE 166.499) written by OMEGA Foundation, Manchester, and published by STOA on January 1998 and later updated (September 1998). In the earlier study it was reported that within Europe all fax, e-mail and telephone messages are routinely intercepted by means of what is called the ECHELON global surveillance system. The monitoring was said to be "routine and indiscriminate". The ECHELON system formed part of the UKUSA system, but unlike many of the electronic spy systems developed during the cold war, ECHELON was said to be designed for primarily non-military targets: governments, organisations and businesses in virtually every country. In the present study the authors were requested to investigate the use of surveillance technology systems, for the collection and possible abuse of sensitive economic information. The principal method selected was a procedure of data collection and processing based on a modified DELPHI method (to be referred to here as "the survey"). Under this method, a list of potential sources of data was prepared. These were some 49 experts from universities, industrial and commercial undertakings in the informations and telecommunications technology sector, as well as a smaller number of persons in international or governmental organisations. The experts were drawn from 11 Member States of the European Union, plus Cyprus, Norway and Switzerland. The next step was the collection of the data. This was mostly achieved by direct interviews of the experts, with the use of a questionnaire. The views (data) were processed and a convergence examination performed. The convergence procedure was based on a recursive approach for the exclusion of the non-reliable data. The last step was the drawing of the analytical results. General overview of the outcome of the survey The predominant view among the experts was that since nowadays almost all economic information is exchanged through electronic means (telephone, fax, e-mail), and, in addition, all digital telecommunication devices and switches have enhanced wiretapping capabilities, for these reasons they suggested that we must focus on the protection of the data when transmitted (using encryption products), on the use of government-approved encryption products and on the adoption of common standards concerning encryption and key-recovery products. The position could be summed up in the statement that 'since it is difficult to prove that economic information has been captured by ECHELON system and passed on by the NSA, we have to consider privacy protection in a global international networked society'. In summary, therefore, we see that two perceptions of this question emerge: (1) a concern about the possible threat to privacy and economic and civil rights potentially posed by global clandestine electronic surveillance systems operated by large and powerful secret government agencies, and (2) anxiety about the problems of commercial and personal privacy which arise now that so much commercial and other communications traffic is conducted over the Internet.
    • Managers of businesses engaged in electronic commerce may perhaps be concerned about global clandestine surveillance systems: what is certain is that they are worried in a more familiar way about threats to commercial security posed by the nature of the new electronic business media and their possible vulnerability to interception by competitors and fraudsters. Reflecting the feedback from the survey, the present study tends to reflect Perception 2, whereas the earlier one of 1998 tended to reflect Perception 1. Advances in information and communication technologies have fostered the development of complex national and international networks which enable thousands of geographically dispersed users to distribute, transmit, gather and exchange all kinds of data. Transborder electronic exchanges -- private, professional, industrial and commercial -- have proliferated on a global scale and are bound to intensify among businesses and between businesses and consumers, as electronic commerce develops. At the same time developments in digital computing have increased the capacity for accessing, gathering, recording, processing, sorting, comparing and linking alphanumeric, voice and image data. This substantial growth in international networks and the increase in economic data processing have arisen the need at securing privacy protection in transborder data flows. Today, it is not necessary to define new principles for the protection of data (and privacy) in an expanding global electronic environment. It is necessary to define the appropriate means of putting the established principles into practice, particularly on the information and communication networks. An active education strategy may be one of the ways to help achieve on-line and privacy protection and to give all actors the opportunities to understand their common interests. Common technological solutions can assist in implementing privacy and data protection guidelines in global information networks. The general optimism about technological solutions, the pressure to collect economic information and the need for political and social policy decisions to ensure privacy must be considered. The growth in international networks and the increase in economic data processing have arisen the need at securing privacy protection in transborder data flows and especially the use of contractual solutions. Global E-Commerce has changed the nature of retailing. There were great cultural and legal differences between countries affecting attitudes to the use of sensitive data (economic or personal) and the issue of applicable law in global transaction had tope resolved. Contracts might bridge the gab between those with legislation and the others. Since Internet symbolised global commerce, faced with a rapid expansion in the numbers of transactions, there is a need to define a stable lasting framework for business. Internet is changing profound the markets and adjusting new contracts. To that reality is a complex problem. Views on privacy collected from the survey
    • In this section the experts' views on the various privacy issues are reported. The information was mostly collected by direct interviews of the experts, based on a predefined questionnaire. General privacy issues Privacy can be a contentious subject because it means different things to different people. The definition given is: "Privacy is the claim of individuals, groups, or institutions to determine for themselves how, when and to what extent information about them is communicated to others" A clear problem expressed is that in an electronic environment, it becomes hard to differentiate between a private and public place and therefore what should be protected and what should not. It was argued that is unreasonable for the society to subsidise the cost of individuals to maintain their privacy, pointing out that most people will choose utility over security (and consequently privacy) It was suggested that privacy in many ways sacrifices other goods (time, effort and energy among them) in order to obtain it. Three basic tools necessary for privacy protection were outlined: notice (to the data supplier), consent (to the consumer), and accountability. Although accountability may be essential to ensuring privacy, it unfortunately conflicts with the anonymity, privacy implies. For any commerce to take place on the Internet, therefore, some level of anonymity and therefore privacy must be sacrificed. The question to be answered is " how much and who will decide". The market for privacy When the European Commission adopted the privacy directive (95/46/EC), it stated that privacy protection is a central precondition to consumers' acceptance of electronic commerce. Accordingly, a critical issue experts argued, was whether there was a "market failure' in the electronic environment that required some sort of government intervention to ensure data privacy. Some experts responded that data privacy is not purely a public good, and so at some point someone will have a market incentive to protect it. Some corporations that have tried to market their strong privacy protection have yet to see any results and have concluded that: "privacy doesn't sell". Other industries have marketed privacy successfully (such as the cellular telephone industry) which could mean that the public demands for privacy are forthcoming and will eventually be profitable. They feel that a question to be answered is: Who governs the responsibility of the information collector, or does society have to impose a sense of responsibility?" The role of industry
    • Most experts expressed the view that the information industry should be primarily self- regulated: the industry is changing too rapidly for government legislative solutions, and most corporations are not simply looking at National or European but at global markets, which national governments cannot regulate. Indeed several experts expressed the fear that any European attempt to allow USA to oversee (via global surveillance systems) data would lead to abuses by the government or other competitive companies. They noted that many companies (such as Citibank) already inform consumers and clients that, unless told otherwise, they will disclose information to their affiliates. They suggested that a simple seal on the home page of a Web site, declaring that a company adheres to certain industry privacy standards might cease the fears of the public and offer some level of accountability. Alternatively, they suggested that the media could act as an effective watchdog, informing consumers and companies of what information is being collected about them and how that information is being used. They also noted that multinational companies could better negotiate for themselves across national boundaries than governments can. Electronic commerce is unlikely to gain popularity until the issues of notice, consent and recourse have been resolved. The market will force companies wishing to participate in this medium to address and solve these concerns. The need for European legislation Experts took the view that the European Parliament must now ask how, in a world of the Internet, one reconciles the objectives of protecting both: privacy and free flow of information. In recent years there have been disclosures that unauthorised individuals have examined financial information from the Internal Revenue Service in USA. Several experts pointed to the flap over the decision by the Social Security Administration in USA to provide companies account information on-line. Each of these examples suggests that protecting data privacy may be a great challenge for the European Parliament. Experts agreed that the European Parliament should play a role in creating a standard for disclosure. Several experts went further and argued the need of a privacy agency within the European Union to act as an ombudsman and to represent privacy interests, so that in debates between European Union and USA there is someone whose responsibility would be to protect privacy. Whatever several experts believe the appropriate role for national governments to be in ensuring privacy in an electronic environment, some "private regulation" is already occurring on the Internet by the computer engines, who write code and decide computer standards. In fact experts suggested that when encryption software becomes ubiquitous it will push Internet commerce because it allows for potentially anonymous transactions, which will solve privacy issues by default.
    • It was pointed out that a group of high-tech companies in co-operation with standardisation organisations should agree on a web-based standard that would allow companies and consumers to interact with data collectors and inform them of what information they would be comfortable having disclosed to other parties. Options for action on surveillance and privacy The policy options for consideration by the committee on Civil Liberties and Internal Affairs of the European Parliament which emerged from the survey are: Authorities in the EU and Member States should: engage in a dialogue involving the private sector and individual users of networks in order to learn about their needs for implementing the privacy guidelines in the global network; undertake an examination of private sector technical initiatives; encourage the development of applications within global networks, of technological solutions that implement the privacy principles and uphold the right of users, businesses and consumers for protection of their privacy in the electronic environment. Drafting methods for enforcing codes of conduct and privacy statements ranging from standardisation, labelling and certification in the global environment through third-party audit to formal enforcement by a regulatory body. Definitions of the transactions which must remain anonymous, and technical capabilities for providing anonymity need to be specified. Enforcement for the adoption of adequate standards (cryptography and key encryption) from all E.U. member states. Multilateral agreements with other countries could then be negotiated. Drafting of common guidelines of credit information use (in each member state of the E.U. different restriction policies exist). It must be dear how those restrictions could apply to a globally operating credit reference agency. Drafting of common specifications for cryptography systems and government access key recovery systems, which must be compatible with large scale, economical, secure cryptographic systems. Enforcement for the adoption of special authorisation schemes for Information Society Services and supervision of their activities by National Authorisation Bodies. Drafting of a common responsibilities framework for on-line service providers, who transmit and store third party information. This could be drafted and supervised by National PTTs. The European Parliament should examine critically proposals from the US for the elimination of cryptography and the adoption of encryption controls supervised by US Agencies.
    • Annual statistics and reporting on abuse of economic information by any means must be reported to the Parliament of each member state of the E.U. Measures for encouraging the formal education systems of each member state of the E.U. or the appropriate European Training Institute/Organisation to take up the general task of educating users in the technology and their rights. PART B: ARGUMENTS AND EVIDENCE General Nowadays almost all economic information is exchanged through electronic means (telephone, fax, e-mail). In addition, all digital telecommunication devices and switches have enhanced wiretapping capabilities. As a conclusion we have to consider privacy protection in a global international networked society. And when we speak about electronic protection and privacy in the exchange of economic information, we actually speak for electronic commerce over the Internet. The information society promises economic and social benefits for all: citizens, companies and governments. Advances in information and communication technologies have fostered the proliferation of private, professional, industrial and commercial transborder electronic exchanges on a global scale which are bound to intensify among businesses and between businesses and consumers as electronic commerce develops. New methods for processing the vast accumulation of data -such as data mining techniques- make it possible, on the basis of demographic data, credit information, details of on-line transactions etc, to identify new kinds of purchasing patterns or unusual relationships. Indeed, compliance with rules governing the protection of privacy and personal data is crucial to establishing confidence in electronic transactions, and particularly in Europe, which has traditionally been heavily regulated in this area. The development of the global information society makes the convergence of government policies, the transparency of rules and regulations and their effective implementation on economic and social life. In particular, in the context of electronic commerce, the development of on-line commercial activities hinges to a large extent, not only on the faith consumers have in business in terms of guaranteed product delivery or security payment systems, but also on the confidence that users and consumers will have in the ways that businesses handle their personal data. To operate with confidence on the global networks, most consumers need assurance that their on-line activities and electronic transactions will not be collected or used without their knowledge or made available to parties other than their initial correspondents. Neither linked to other data about them in order to compile behavioural profiles without their consent. The importance of information and communication systems for society and the global economy is intensifying with the increasing value and quantity of data that is transmitted and stored on
    • those systems. At the same time those systems and data are also increasingly vulnerable to a variety of threats such as unauthorised access and use, misappropriation, alteration and destruction. Proliferation of computers, increased computing power, interconnectivity, decentralisation, growth of networks and the number of users, as well as the convergence of information and communication technologies, while enhancing the utility of these systems, also increase system invulnerability. Cryptography is an important component of secure information and communication systems and a variety of application have been developed that incorporate cryptographic methods to provide data security. Although there are legitimate governmental, commercial and individual needs and uses for cryptography, it may also be used by individuals or entities for illegal activities, which can affect public safety, national security, the enforcement of laws, business interests, consumers interests or privacy. Governments together with industry and the general public, are challenged to develop balanced policies to address these issues. Cryptography uses an algorithm to transform data in order to render it unintelligible to anyone who does not possess certain secret information (the cryptographic "key"), necessary for decryption of the data. Within the new concept of cryptography, rather than sharing one secret key, the new design uses two mathematically related keys for each communication party: a "public key" that is disclosed to the public and a corresponding "private key", that is kept secret. A message that is encrypted with a public key can only be decrypted by the corresponding private key. An important application for public key cryptography is "digital signature", which can be used to verify the integrity of data or the authenticity of the sender of data. In this case, the private key is used to "sign" a message, while the corresponding public key is used to verify a "signed" message. Public key cryptography plays an important role in developing information infrastructure. Much of the interest in information and communication networks and technologies centres on their potential to accommodate electronic commerce; however open networks such as the Internet present significant challenges for making enforceable electronic contracts and secure payments. Since Electronic Commerce on one hand is one of the key strategies of the European Union and the privacy protection on the other hand, one of its main principles, E.U. in 1998 released three "key" working documents: Proposal for a European Parliament and Council Directive on certain legal aspects of Electronic Commerce in the internal market [ COM(1998) 586 final]. Proposal for a European Parliament and Council directive on a common framework for electronic signatures [COM (1998)297 final].
    • Ensuring security and trust in electronic communication: "Towards a European framework for digital signatures and Encryption" [COM(1997) 503 final]. Increasing the number of people with authorised access to the critical infrastructure and to business data, will increase the likelihood of attack, whether through technical means, by exploitation of mistakes or through corruption. Further "key-recovery" requirements to the extent that they made encryption can have the effect of discouraging or delaying the deployment of cryptography in increasingly vulnerable computing and communication networks. As the Internet and other communications systems reach further into everyday lives, national security, law enforcement and individual privacy have become perilously intertwined. Governments want to restrict the free flow of information; software producers are seeking ways to ensure consumers are not bugged from the very moment of purchase. The US is behind a world-wide effort to limit individual privacy and enhance the capability of its intelligence services to eavesdrop on personal conversations. The campaign has had two legal strategies: the first made it mandatory for all digital telephone switches, cellular and satellite phones and all developing communication technologies to build in surveillance capabilities; the second sought to limit the dissemination of software that contains encryption, a technique which allows people to scramble their communications and files to prevent others from reading them. The first effort to heighten surveillance opportunities was to force telecommunications companies to use equipment designed to include enhanced wiretapping capabilities. The end goal was to ensure that the US and its allied intelligence services could easily eavesdrop on telephone networks anywhere in the world. In the late 1980s, in a programme known internally as 'Operation Root Canal', US law enforcement officials demanded that telephone companies alta their equipment to facilitate the interception of messages. The companies refused but, after several years of lobbying, Congress enacted the Communications Assistance for Law Enforcement Act (CALEA) in 1994. CALEA requires that terrestrial carriers, cellular phone services and other entities ensure that all their ' equipment, facilities or services' are capable of expeditiously. . . enabling the government...to intercept... all wire and oral communications carried by the carrier...concurrently with their transmission.' Communications must be interceptable in such a form that they could be transmitted to a remote government facility. Manufacturers must work with industry and law enforcement officials to ensure that their equipment meets federal standards. A court can fine a company US$10,000 per day for each product that does not comply. The passage of CALEA has been controversial but its provisions have yet to be enforced due to FBI efforts to include even more rigorous regulations under the law. These include the requirement that cellular phones allow for location-tracking on demand and that telephone companies provide capacity for up to 50,000 simultaneous wiretaps. While the FBI lobbied Congress and pressured US companies into accepting a tougher CALEA, it also leaned on US allies to adopt it as an international standard. In 1991, the FBI held a series of secret meetings with EU member states to persuade them to incorporate CALEA into
    • European law. The plan, according to an EU report, was to 'call for the Western World (EU, US and allies) to agree to norms and procedures and then sell their products to Third World countries. Even if they do not agree to interception orders, they will find their telecommunications monitored by the UK-USA signals intelligence network the minute they use the equipment.' The FBI's efforts resulted in an EU Council of Ministers resolution that was quietly adopted in January 1995, but not publicly released until 20 months later. The resolution's text is almost word for word identical to the FBI's demands at home. The US government is now pressuring the International Telecommunications Union (ITU) to adopt the standards globally. The second part of the strategy was to ensure that intelligence and police agencies could understand every communication they intercepted. They attempted to impede the development of cryptography and other security measures, fearing that these technologies would reduce their ability to monitor the emissions of foreign governments and to investigate crime. These latter efforts have not been successful. A survey by the Global Internet Liberty Campaign (GILC) found that most countries have either rejected domestic controls or not addressed the issue at all. The GILC found that 'many countries, large and small, industrialised and developing, seem to be ambivalent about the need to control encryption technologies'. The FBI and the National Security Agency (NSA) have instigated efforts to restrict the availability of encryption world-wide. In the early 1970s, the NSA's pretext was that encryption technology was 'born classified' and, therefore, its dissemination fell into the same category as the diffusion of A-bomb materials. The debate went underground until 1993 when the US launched the Clipper Chip, an encryption device designed for inclusion in consumer products. The Clipper Chip offered the required privacy, but the government would retain a 'pass-key' - anything encrypted with the chip could be read by government agencies. Behind the scenes, law enforcement and intelligence agencies were pushing hard for a ban on other forms of encryption. In a February 1993 document, obtained by the Electronic Privacy Information Center (EPIC), they recommended 'Technical solutions, such as they are, will only work if they are incorporated into all encryption products'. To ensure that this occurs, legislation mandating the use of government-approved encryption products, or adherence to government encryption criteria, is required.' The Clipper Chip was widely criticised by industry, public interest groups, scientific societies and the public and, though it was officially adopted, only a few were ever sold or used. From 1994 onwards, Washington began to woo private companies to develop an encryption system that would provide access to keys by government agencies. Under the proposals - variously known as 'key escrow', 'key recovery' or 'trusted third parties' - the keys would be held by a corporation, not a government agency, and would be designed by the private sector, not the NSA. The systems, however, still entailed the assumption of guaranteed access to the intelligence community and so proved as controversial as the Clipper Chip. The government used export incentives to encourage companies to adopt key escrow products: they could export stronger encryption, but only if they ensured that intelligence agencies had access to the keys.
    • Under US law, computer software and hardware cannot be exported if it contains encryption that the NSA cannot break. The regulations stymie the availability of encryption in the USA because companies are reluctant to develop two separate product lines -- one, with strong encryption, for domestic use and another, with weak encryption, for the international market. Several cases are pending in the US courts on the constitutionality of export controls; a federal court recently ruled that they violate free speech rights under the First Amendment. (... The NSA is one of the shadowiest of the US intelligence agencies. Until a few years ago, it existence was a secret and its charter and any mention of its duties are still classified. However, it does have a Web site (www.nsa.gov:8080) in which it describes itself as being responsible for the signals intelligence and communications security activities of the US government. One of its bases, Menwith Hill, was to become the biggest spy station in the world. Its ears -- known as radomes -- are capable of listening in to vast chunks of the communications spectrum throughout Europe and the old Soviet Union In its first decade the base sucked data from cables and microwave links running through a nearby Post Office tower, but the communications revolutions of the Seventies and Eighties gave the base a capability that even its architects could scarcely have been able to imagine. With the creation of Intelsat and digital telecommunications, Menwith and other stations developed the capability to eavesdrop on an extensive scale on fax, telex and voice messages. Then, with the development of the Internet, electronic mail and electronic commerce, the listening posts were able to increase their monitoring capability to eavesdrop on an unprecedented spectrum of personal and business communications. This activity has been all but ignored by the UK Parliament. When Labour MPs raised questions about the activities of the NSA, the Government invoked secrecy rules. It has been the same for 40years.... ) (Simon Davis report: http://www.telegraph.co.uk) The FBI has not let up on efforts to ban products on which it cannot eavesdrop. In mid-1997, it introduced legislation to mandate that key-recovery systems be built into all computer systems. The amendment was adopted by several congressional Committees but the Senate preferred a weaker variant. A concerted campaign by computer, telephone and privacy groups finally stopped the proposal; it now appears that no legislation will be enacted in the current Congress. While the key escrow approach was being pushed in the USA, Washington had approached foreign organisations and states. The linchpin for the campaign was David Aaron, US ambassador to the Organisation for Economic Co-operation and Development (OECD), who visited dozens of countries in what one analyst derided as a programme of 'laundering failed US policy through international bodies to give it greater acceptance'. Led by Germany and the Scandinavians, the EU has been generally distrustful of key escrow technology. In October 1997, the European Commission released a report which advised: 'Restricting the use of encryption could well prevent law-abiding companies and citizens from protecting themselves against criminal attacks. It would not, however, totally prevent criminals
    • from using these technologies.' The report noted that 'privacy considerations suggest limit the use of cryptography as a means to ensure data security and confidentiality'. Some European countries have or are contemplating independent restrictions. France had a longstanding ban on the use of any cryptography to which the government does not have access. However, a 1996 law, modified the existing system, allowing a system of "tiers du confidence", although it has not been implemented, because of EU opposition. In 1997, the Conservative government in the UK introduced a proposal creating a system of trusted third parties. It was severely criticised at the time and by the new Labour government, which has not yet acted upon its predecessor's recommendations. The debate over encryption and the conflicting demands of security and privacy are bound to continue. The commercial future of the Internet depends on a universally-accepted and foolproof method of on-line identification; as of now, the only means of providing it is through strong encryption. That put the US government and some of the world's largest corporations, notably Microsoft, on a collision course. (Report of David Banisar, Deputy director of Privacy International and Simon Davies, Director General of Privacy International). The issue of encryption divides the member states of the European Union. Last October the European Commission published a report entitled: "Ensuring security and Trust in Electronic Commerce", which argued that the advantages of allowing law enforcement agencies access to encrypted messages are not clear and could cause considerable damage to the emerging electronic industry. It says that if citizens and companies "fear that their communications and transactions are being monitored with the help of key access or similar schemes unduly enlarging the general surveillance possibility of government agencies, they may prefer to remaining in the anonymous off-line world and electronic commerce will just not happen". However, Mr Straw said in Birmingham (JHA Informal JHA Ministers) that: "It would not be in the public interest to allow the improper use of encryption by criminals to be totally immune from the attention of law enforcement agencies". The UK, along with France (which already has a law obliging individuals to use "crackable" software) and the USA, is out on a limb in the EU. "The UK presidency has a particular view and they are one of the access hard-liners. They want access: "them and the French", commented an encryption expert. They are particularly about "confidential services" which ensure that a message can only be read by the person for whom it is intended who has a "key" to access it. The Commission's report proposes "monitoring" Member States laws' on "confidential services" to ensure they do not contravene the rules of the single market. Examples of Abuse of Economic Information In the course of collecting the data for and preparing this Interim Study various examples were cited of abuse of privacy via global surveillance telecommunication systems. A number of them is given in [54]. For the final version of the study, we shall see whether the experts have further comments to make on these examples, or whether they have new examples to suggest. The consultation of experts in our survey so far yielded the following comments:
    • Since Internet has come to play a significant role in global commerce, then (as in Examples 1, 2, 3 and 4 cited below) Internet also became a tool of misleading information and a platform for deceitful advertisement. On the positive side, Internet is a "golden highway" for those interested in the process of information. However, apart from global surveillance technology systems, additional tools have been developed for surveillance. The additional tool used for information transferred via Internet or via Digital Global telecommunication systems is the capture of data with Taiga software. Taiga software has the possibility to capture, process and analyse multilingual information in a very short period of time (I billion characters per second), using key-words. The examples given below are taken from the sources named: Example 1 On January 15, 1990, the telephone network of AT&T company, in all the North-east part of USA faced serious difficulties. The network NuPrometheus had illegally owned and distributed the key-code of the operational system of AT&T Macintosh computer (Apple company). J.P. Barlow: "A not terribly brief history of the Electronic Frontier Foundation," 8 November 1990 Example 2 On January 24, 1990, the Electronic Frontier Foundation (EFF) in USA, accused a huge police operation under the encoded name "Sun Devil", in which 40 computers and 23,000 diskettes were seized from teenagers, in 15 towns within USA. Teenager Craig Neidorf supported by EFF, not to be punished in 60 years prison and 120,000 USD penalty. Craig Neidorf had published in Phrack (a hackers magazine) part of the internal files of a telephone company. M. Godwin: "The EFF and virtual communities," 1991 Example 3 On June 25, 1998, in Absheim, an aircraft A-320 of the European Company "Airbus Industries" crashed during a demonstration flight. The accident was reportedly caused by dangerous manoeuvres. One person died and 20 were injured. Very soon afterwards, and before the announcement of the official report, in the aerospace and transport Internet newsgroups there appeared many hostile messages against the Airbus undertaking and against the French company Aerospatiale as well, with which Airbus had close cooperation. Messages declared that the accident was to be expected because European engineers
    • are not so highly qualified as American engineers. It was also clearly stated, that in the future similar accidents were to be expected. Aerospatiale's representatives took these hostile messages very seriously. They tried to discover the sources of messages and they finally realised that senders' identification data, addresses and nodes were false. The source messages came from USA, from computers with misleading identification data and transferred from anonymous servers in Finland. B. Martnet and Y.M. Marti: "L'intelligence econimique. Les yeux et les oreilles de 1' enterprise, Editions d'organisation". Paris 1995 Example 4 In October 31, 1994, in USA, an accident occurred to an ATR aircraft (of the European Consortium Aeritalia and Aerospatiale). Owing to this accident, a ban on ATR flights for two months was imposed. This decision became catastrophic on a commercial level for the company, because ATR was obliged to carry out test flights in fog conditions. During this period, in Internet newsgroups (and especially in the AVSIG forum, supported by Compuserve), the exchange of messages was of vital significance. The messages supporting the European company were few, while the messages against ATR were many. At the beginning of January 1995, there appeared a message from a journalist in this forum asking the following: "I have heard that ATR flights will begin soon. Can anybody confirm this information?" The answer came very soon. Three days after, unexpectedly, permission to continue ATR flights was given. The company learned this, as soon as the permission announced. But if they had actively participated in the newsgroups, they would have gained some days to inform their offices and their clients. "Des langages pour analyser la poussiere d' info", Liberation, 9 June 1995 Example 5 The government of Brasil in 1994, announced its intention to assign an international contract (Amazonios). This procurement was of great interest since the total amount available for the contract was 1,4 billion USD. From Europe, the French companies Thomson and Alcatel expressed their interest and from USA, the huge weapon industry Raytheon. Although the offer of the French companies was technically excellent and allegedly better documented, the contract was eventually assigned to the USA company. It was reported in the press that this was achieved with a new offensive strategy used by USA. When the government of Brazil was about to assign the contract to the French companies, American Officials (allegedly with the personal involvement of President Bill Clinton) readjusted their offer, according to the offer of the European companies, and asserted that French companies influenced the committee, an accusation which was never proved. On the other hand, the European companies were reported
    • to have indications that the intention of the government of Brazil to assign the contract to the European companies became known to Americans with the use of FBI's surveillance technologies. "La nouvelle machine de querre americaine", LeMonde du reseingnement no 158, 16 February 1995 Example 6 In January 1994 Edouard Balladur, French Prime Minister, went to Ryadh (Saudi Arabia), feeling certain to bring back a historic contract for more than 30 million francs in sale of weapons and, especially, Airbus. He returned disappointed. The contract went to the McDonnell- Douglas American company, rival of Airbus. The French were report to believe that this was at least in part due to electronic surveillance by the ECHELON system, which had given to the Americans the financial conditions and incentives authorised by Airbus. French press reports said the National Security Agency is the most secret and most significant of the thirteen secret agencies of the United States. It receives about a third of the appropriations allocated with clandestine intelligence: 8 of the 26,6 billion dollars (160 18 billion francs) registered appropriations in the 1997 budget. With its 20.000 employees in United States and some thousands of agents throughout the world, the NSA (which forms part of ministry for Defence since its creation in 1956) is more important than the CIA, even if the latter is better known to the public. Its site at Fort Meade contains, according to sources familiar with the place, the greatest concentration of data processing power and mathematicians in the world. They are employed to sort and analyse the flood of data acquired by ECHELON on the networks of international telecommunications. "Echelon est au service des interets americains", Liberation, 21 April 1998 PART C: TECHNICAL FILE 1. INTRODUCTION Surveillance and Privacy Surveillance is the systematic investigation or monitoring of the actions or communications of one or more persons. It has traditionally been undertaken by physical means (e.g. prison guards on towers). In recent decades it has been enhanced through image amplification devices such as binoculars and high-resolution satellite cameras. The basic born [sic] physical surveillance comprises watching (visual surveillance) and listening (aural surveillance). Monitoring may be undertaken remotely in space, with the aid of image amplification devices like field glasses, infrared binoculars, light amplifiers and satellite cameras
    • and sound amplification devices like directional microphones; and remotely in time with the aid of image and sound recording devices. Electronic devices have been developed to augment physical surveillance and offer new possibilities such as closed-circuit TV (CCTV), VCR, telephone bugging, Proximity cards, Electronic Database, etc. In addition to physical surveillance, several kinds of communications surveillance are practiced, including mail covers and telephone interception. The popular term electronic surveillance refers to both augmentations to physical surveillance (such as directional microphones and audio bugs) and to communication surveillance, particularly telephone taps. The recent years have seen the emergence and refinement of a new form of surveillance no longer of the real person, but of the person's data shadow or digital persona. Data surveillance or Dataveillance is the systematic use of personal data systems in the investigation or monitoring of the actions or communications of one or more persons. Dataveillance is significantly lees expensive than physical and electronic surveillance, because it can be automated. As a result, the economic constraints on surveillance are diminished and more individuals and larger populations are capable of being monitored. Like surveillance, more generally, Dataveillance is of two kinds: "personal Dataveillance", where a particular person has been previously identified as being of interest, "mass Dataveillance", where a group or large population is monitored, in order to detect individuals of interest, and / or to deter people from stepping out of line. Surveillance technology systems are mechanisms, which can identify, monitor and track movements and data. During the last few decades since information technology has become immensely sophisticated real benefits have been achieved in the development of surveillance technology systems. On the other hand, negative impacts have been considerable: The application of IT to the surveillance of people through their data. IT technology may have substantial implications in privacy. People often think of privacy as some kind of right. Unfortunately, the concept of a "right" is a problematic way to start, became a right seems to be some kind of absolute standard. What's worse, is very easy to get confused between legal rights on one hand and natural or moral rights on the other. It turns out to be much more useful to think about privacy as one kind of thing (among many kinds of things) that people like to have lots of. Privacy the interest that individuals have in sustaining a "personal space" free from interference by other people and organizations. To a deeper level privacy turns out not to be a single interest but rather has several dimensions:
    • privacy of the person privacy of personal behavior privacy of personal communications privacy of personal data With the close coupling that has occurred between computing and communications, particularly since the 1980's the last two aspects have become closely linked, and are commonly referred as information privacy. Information privacy is the interest an individual has in controlling, or at least significantly influencing the handling of data about themselves. The term 'data privacy' is sometimes used in the same way. 'Data' refers to inert numbers, where information implies the use of data by humans to extract meaning; hence 'information privacy' is arguably the more descriptive way of the two alternatives. 'Confidentiality' is an incidental and wholly inadequate substitute for proper information privacy, protection, where: 'Confidentiality is the legal duty of individuals who come into the procession of information about others, especially in the course of particular kinds of relationships with them'. Dataveillance Techniques A variety of Dataveillnce techniques exists. Front-end verification (FEV), for example, comprises the checking of data supplied by an applicant (e.g. for a loan or government benefit) against data from a variety of additional sources, in order to identify discrepancies. FEV may be applied as a person dataveillance tool where responsible grounds exist for suspecting that the information the person has provided may be unreliable; where, on the other hand, it is applied to every applicant, mass dataveillance is being undertaken. Data matching is a facilitative mechanism of particular value in mass dataveillance. It involves trawling through large volumes of data collected for different purposes, searching for discrepancies and drawing influences from them. Personal dataveillance of previously identified individuals integration of data hitherto stored in various locations within a single organization screening or authentication of transactions against internal norms front-end verification of transactions that appear to be exceptional, against data relevant to the matter at hand. and sought from other databases or from third parties.
    • front-end audit of individuals who appear to be exceptional against data related to other databases or from third parties. cross-system enforcement against individuals, where a third party reports that the individual has committed a transgression in his or her relationship with the third party. Mass dataveillance of groups of people. screening or authentication of all transactions, where or not they appear to be exceptional, against internal norms front-end verification of all transactions, whether or not they appear to be exceptional against data relevant to the matter at hand, as sought from other internal databases or from third parties. front-end audit of individuals, whether or not they appear to be exceptional against data relevant to the matter at hand, as sought from other internal databases or from third parties. single-factor file analysis of all data held or able to be acquired, whether or not they appear to be exceptional, variously involving transaction data compared against a norm, permanent data or other transaction data. profiling or multi-factor file analysis of all data held or able to acquire, whether or not they appear to be exceptional, variously involving singular profiling of data held at a point in time, or aggregative profiling of transaction trails over time. Facilitative mechanisms could be: computer data matching, in which personal data records relating to many people are compared in order to identify cases of interest data concentration, homely the combination of personal data interchange networks and hub systems. Risks inherent in Data Surveillance Data surveillance's broader social impacts can be grouped as follows: In personal dataveillance low data quickly decisions [sic] lack of subject knowledge of, and consent to, data flows blacklisting denial of redemsion [sic]
    • In mass surveillance a. Risks to the individuals: arbitrariness a contextual data merger complexity and incomprehensibility of data witch hunts ex-ante discrimination and guilt prediction selective advertising inversion of the onus of proof covert operations unknown accusations and accusers denial of due process b. Risks to society: prevailing climate of suspicion adversarial relationships focus of law enforcement on easily detectable and provable offences inequitable application of the law decreased respect for the law and low enforcers reduction in the meaningfulness of individual actions reduction in self-reliance and self-determination stultification of originality increased tendency to opt out of the official level of society weakening of society's moral fibre and cohesion destabilization of the strategic balance of
    • power repressive potential for the totalitarian government. By way of example, individuals can suffer as a result of misunderstandings about the meaning of data on the file, or because the file contains erroneous data, which the individual does not understand and against which he / she has little or not chance of arguing without the help of a specialized lawyer. Such seemingly small, but potentially very frustrating and infuriating personal problems can escalate into widespread distrust by people of government agencies and the legal system as a whole Of course, many of the risks referred are diffuse. On the other hand, there is a critical economic difference between conventional forms of surveillance and Dataveillance. Physical surveillance is expensive because it requires the application of considerable resources. Although (with few exceptions), this expense has been sufficient to restrict the use of surveillance. Admittedly the selection criteria used by the surveillance agencies have not always accorded with what the citizenry might have preferred, but at least its extent was limited. The effect was that in most countries the abuses affected particular individuals who had attracted the attention of the state, but were not so pervasive that artistic and potential freedoms were widely constrained. Dataveillance changes all that. Dataveillance is relatively very cheap and getting cheaper all the time, thanks to progress in information technology. The economic limitations are overcome and the digital persona can be monitored with thoroughness and frequency and surveillance extended to whole populations. Nowadays, a number of particular populations have attracted the bulk of the attention, because the state already processed substantial data - holdings about them. There are social welfare recipients and employers of the state. Now that techniques have been refined, they are being pressed into more general usage, in the private as well in the public sector. Controls If dataveillance is burgeoning, controls are needed to ensure that its use is not excessive or unfair. There is a variety of natural or intrinsic controls, such as self-restraint and morality. Unfortunately morality has been shown many times to be an entirely inadequate influence over people's behaviour. There is also the economic constraint, whereby work that isn't worth doing tends not to get done, because people perceive better things to do with the same scarce resources. Regrettably this too is largely ineffective. Cost/benefit analysis of dataveillance measures is seldom performed, and when it has been the quality has generally been appalling. This reflects the dominance of political over economic considerations -- both politicians and public servants want action to be seen to be being taken, and are less concerned about its effectiveness than its visibility. If intrinsic controls are inadequate, extrinsic measures are vital. For example, the codes of ethics of professional bodies and industry associations could be of assistance. Regrettably, these are generally years behind the problems, and largely statements of aspiration rather than operational
    • guidelines and actionable statements of what is and is not acceptable behaviour. Over twenty years after the information privacy movement gathered steam, there are few and very limited laws which make dataveillance activities illegal, or which enable regulatory agencies or the public to sue transgressing organisations. A (limited) statute exists at national level, but none at all at the level of State Governments. In any case, statutory regimes are often weak due to the power of data-using lobbies, the lack of organisation of the public, and the lack of comprehension and interest by politicians. The public has demonstrated itself as being unable to focus on complex issues; public apathy is only overcome when a proposal is presented simply and starkly, such as 'the State is proposing to issue you with a plastic card. You will need to produce it whenever anyone asks you to demonstrate that you have Permission to breathe'. There is a tendency for dataveillance tools to be developed in advanced nations, which have democratic traditions and processes (however imperfect). There is a further tendency for the technology to be exported to less developed countries. Many of these have less well-developed democratic traditions, more authoritarian and even repressive regimes. The control mechanisms in advanced western democracies are inadequate to cope with sophisticated dataveillance technologies; in third world countries there is very little chance indeed of new extrinsic controls being established to ensure balance in their application. It appears that some third-world countries may be being used as test-beds for new dataveillance technologies. 2. SURVEILLANCE: TOOLS AND TECHNIQUES - Current technologies Surveillance is using some of the most advanced and sophisticated technology to keep track of individuals; where they go, what they do and even what they say. Visual and audio surveillance are almost everywhere, and, modern electronic technology gives the possibility of keeping track of individual's moments without cameras or microphones, just with surveillance of their data (Dataveillance ) 1. Visual Surveillance Closed-circuit TV (CCTV) is the most common electronic visual surveillance technique. Recording can be in two modes: real-time or time-lapse. Real-time is regular TV (at 30 frames (second) showing full motion). Time-lapse selects only a few frames per time period, perhaps one or two per second, to record. The advantage of time-lapse is that it allows one tape to record for a much longer time than real time recording Video electronics can be very sophisticated indeed and the recent trend is digital video. This allows using the QUAD recording system, a method of compressing four separate camera images into a single frame, so that the guard could see all four views on the monitor screen and record them on a VCR (Video Cassette Recorder) at the same time. These systems allow detailed
    • surveillance and plant monitoring, so that responsibles can observe everything happening within the facility. In the previous years may be, only the entrance (or specific spaces) would be under video surveillance. Now it is possible to have surveillance everywhere. Using hard disks instead of videotape allows keeping a record of several month's worth of time-lapse video. Cameras also are much more sophisticated today than years ago. New circuits allow the camera to ignore bright, light-emitting objects within their fields of view. Miniaturization allows easier concealment, infra-red cameras allow surveillance in darkness. Video surveillance is portable as well. The old days of concealing a camcorder in a briefcase or duffel bag have given way to subminiature cameras concealed in neckties and other items. Decoy items (items containing the surveillance equipment) include baseball caps, belt buckles, briefcases, eyeglasses and wristwatches. CCTV is very quickly becoming an internal part of crime control policy, social control theory and Community consciousness. It is promoted by police and politicians as primary solution for urban dysfunction. They are now used in many areas, including roads, trains, railway platforms, car parks, loading docks, shopping centers, individual retail stores, banks, automatic teller machines, petrol stations, lifts, lobby areas, cash handling and storage areas and employee recreation rooms. Within the aims of the contract, this study looks at its usage in five main industrial contexts: retail stores, financial services, manufacturing, warehousing and distribution, larger office buildings and leisure and entertainment complexes. Video surveillance is used in these industries for several reasons: to minimize the risk of theft, especially in the retail industry for purposes of deterring and detecting crime protect premises from threats to property such as sabotage, arson and vandalism to monitor individual employee work performance to improve customer service by observing peak periods and planning the allocation of staff throughout the day to assist in staff training to enhance health and safety standards to ensure that employees comply with legal obligations to protect employers from liability claims
    • to monitor production processes. Most surveillance systems are being installed to prevent theft, either by outsiders or employees, but, video surveillance systems often are used for a range of purposes beyond what was originally intended. Surveillance systems which are initially installed for the purpose of protecting property against an external security threat can be used for other purposes, such as to monitor employees' productivity and work behavior. The routine use of video surveillance has the potential to undermine employees' sense of privacy and dignity in the workplace. Surveillance is associated with increased levels of stress, undermining morale and creating distrust and suspicion between employees and management. While it may be an effective instrument to protect an employer from external security threats, it is not appropriate as a means of monitoring individual employee performance. Covert surveillance with a smaller number of hidden cameras may in fact be a much popular and at the same time cheaper option than a general security system. Some of the justifications offered for covert video surveillance are: employers have a right to protect their business interests covert surveillance affect fewer employees than overt surveillance and is much cheaper if employees are unaware of surveillance, there is less risk of individual disputation covert surveillance is often the most effective means of detecting unlawful activity. 2. Audio Surveillance Audio surveillance is no longer merely an arcane art practiced by spies and private detectives. Today, it's common place and spreading. Tape recorders are a fact of life, and they're often used to document a transaction. Trying to telephone some companies and some government agencies there is a recording sign says: "This transaction is being recorded to help us assure ...". In some companies the real purpose of tape recording conversation is to check how may the handle an hour, and to have evidence in case the customer says something that can used against him. In prisons, officials often use electronic equipment to record all telephone conversations. Some of these are between lawyer and client, but all they go onto tape. It depends on the ethics of the guards whether they listen or not. They are "high tech voice recorders" that put every conversation on a CD disk. A model made for correctional use is the "Laser voice", using optional disk voice recording.
    • "Tube mike" is an electric device for "bugging" a room, motor vehicle, or other premises. It is a plastic tube passed through a small hole in a wall to conduct sound from the room to a small microphone at the other end. This could be characterized as "non- access surveillance". "Tube microphones" come in all sizes. Some are relatively large plastic tubes (about 1/2'' in diameter), but for tight spaces or maximum concealment there are "needle microphones" pressed against a wall to hear sounds in the next room. If there is access to a room, a bug could be planted almost anywhere, even in the subject's clothing. "Radio mikes" transmit whatever they pick up to a nearby receiver eliminating the need for tell-tale wires. Their only drawback, if they're totally self-contained, is battery life. Other models fit into wall plugs, and take their power from the house current One type of portable radio mike is the size and shape of a credit card, with a range of several hundred feet and a 30-hour battery life. Placed into the beast pocket of the subjects jacket, it permits monitoring a conversation held outdoors. The value of this is that many people think its possible to overhear a conversation held on the street or in a park, and that walking will defeat any prospect of a bug planted nearby. In the open market there are several models of "gimmicked telephones" that use in the built in microphone to pick up any conversation in the room even when the telephone is not in use. All the types of audio surveillance with miscellaneous bugging devices described before, are used today mainly in police and internal security agencies (such as FBI, NSA etc) or in companies security departments. Telephone tapping still exists, but with today's Electronic Switching System (ESS) its no longer necessary to go out and physically tap a person's telephone line. 3. Phone Tapping and Encryption Whenever a telephone line is tapped the privacy of the persons at both ends of the line is invaded and all conversations between them upon any subject and although proper, confidential and privileged ma be overheard. The phone tapping normally used for surveillance of communications to combat "serious crime" and to protect "national security". On the other hand often companies keep records of phone numbers calls and the duration of such calls. In some companies these records are used to gauge job performance, while in others it simply allows employees to review calls and reimburse the employer for calls of a purely personal nature. 4. Voice and Word Pattern Recognition
    • Since it is no possible for an Agency or organization to employ a staff large enough to listen to all telephone conversations, read all faxes, etc, word recognition has to be computerized. In this case a central computer could monitor all (or a group) of telephone conversations and recognize those in which the agency had an interest by using voice patterns and key words. A wide variety of techniques are used to perform speech recognition. Typically speech recognition starts with the digital sampling of speech. The next stage is acoustic signal processing. Most techniques include spectral analysis e.g. LPC (Linear Predictive Coding), MFCC (Mel Frequency Cepstral Coefficients) cochlea modeling and many more. The next stage is recognition of phonemes, groups of phonemes and words. This stage can be achieved by many processes such as DTW (Dynamic Time Warping), HMM (Hidden Markov modeling), expert systems and combination of techniques. Most systems utilize some knowledge of the language to aid the recognition process. Some systems try to "understand" speech. That is try to convert the words into a representation of what the speaker intended to mean or achieve by what they said. Voice and pattern recognition used as an advanced tool and a helpful technique (thanks to the IT) for surveillance of communications to combat "serious crime" or to protect "national security" 5. Proximity Smart Cards Originally, electronic cards were substitutes for keys, which were too easy to reproduce. A metal key blank and a file where all that were necessary to duplicate a key, but more sophisticated equipment is necessary to duplicate even the simplest sort of electronic card. The first type of electronic card used barium ferrite as magnetic dots embedded in the magnetic layer. This was a significant advance over punched cards, that were relatively easy to duplicate. In the early 1970s, magnetic stripe cards were produced (by IBM), which are still used in credit cards and are somewhat more secure. However, they're still too easy to forge and should pass through a magnetic stripe reader. In the early 1980s, the advent of Application Specific Integrated Circuit (ASIC) technology, resulted in what quickly become known as "smart card" which could hold a variety of codes and information to make misuse or duplication almost impossible. This was the first "proximity card", which did not require direct contact through a card recorder. The proximity card is basically a "transponder" an electronic device that replies to a radio signal that "interrogates" it. The extended range model doesn't require even placing it near the card reader, as it transmits to a receiver several feet away. Use of proximity smart card as Transport card / E-purse
    • Transportation companies use the proximity smart cards to replace metro, bus, train tickets and boarding cards, etc. The proximity smart card results in considerable time saving by greatly increasing passenger flow without diminishing security With the contact part of the card, the proximity smart card is perfectly suited to financial transactions involving small amounts of money: automatic vending cafeterias, local shops, parking fees, cinemas, recreation / amusement parks, cultural and sports centers etc. Use of proximity smart card as Access control / ID card The company Proximity smart card contains data used to identify cardholders, as well as his own different access rights. The contactless part of the card is used to access building and other protected areas. The contact portion can be used for network access, such as the Internet. With the electronic purse function it can be used in the company restaurant, at automatic vending machines, just like a traditional multi-service card. One application, although, extends the proximity card's usefulness by turning it into a tracking device. Proximity readers installed along the walls of a building allow tracking each card within the facility. If somebody is carrying one of these cards within a building so equipped, the central computer can sense exactly where he (she is at all times). There is a record of which area the employee (or visitor) is in, when he leaves, and where else within the building he may go. If the employee goes to the cafeteria, the computer will log when he lefts his work station, how long it took him to get to the cafeteria, which root he took, how long he remained in the cafeteria, when he started back and by which route, and when he arrived back in his work area. Likewise if he went to the bathroom. The computer can record whether he/she went to the men's room or the ladies' room. Many countries are actively considering adopting national ID cards for the variety of functions. These include the United States, United Kingdom and Canada. There are ID cards (credit cards) used for digital cash service which is supposed to be "anonymous". But, it appears that the bank and the merchants could find the identity of the users. The customer is identified to the trader and ultimate to the bank by the 300 previous transactions. Each of these will soon be superseded by further transactions and drop off end of the list. These can be monitored by the bank and could be used for marketing purposes. This is the audit trail and could be sold to business users for third party marketing. 6. Transmitter Location When a telephone or mobile phone used, the location of the user could be identified. The science of location radio uses three methods of finding a transmitter. The oldest is triangulation, in which
    • several receiving stations with directional antennas take bearing on a transmission and communicate the bearing to a central plotting room. Technicians trace each bearing on a map of the area and the intersection of the bearing pinpoints the location of the transmitter. The second method requires several receives as well, and works by measuring the relative strengths of signals received. A computer analyses the strengths and determines the location of the transmitter The third method also requires a computer-controlled chain of receives and measures the minute differences in the time the signal arrives at each receiver. Formerly classified, these techniques are now available on the civilian market for law enforcement and private security. One application is locating stolen cars by pinpointing radio transmitters installed in the vehicle for this purpose. Location of cellular phones in another application. Police today are using (in some countries) this application to pinpoint the location of cellphone users. Purportedly, this is to speed emergency response when a citizen calls for help (at home or in the road). Once the equipment is in place, it can, and must, serve other purposes. Criminal investigators will be able to pinpoint a specific cellphone each time the caller uses it, this will help an investigation into a stolen cellphone, or help locate wanted persons unwise enough to use cellphone or mobile phone. Another device, sold only to police, is the "cellphone ESN Reader", which reads the numbers of the targeted cellphone. This detects and records the cellular phone number, called number and ESN of the target phone of a ranges of up to two miles. Theoretically, the technology can locate every cellphone and every mobile phone in the country every time someone makes a call on it (for cellphones) or just open it (for mobile phones). 7. E-mail at workplace Personal messages the employee sent over his company's e-mail are not private. They are not, and court decisions have held that they're not. It is a safe assumption that companies will keep an increasingly watchful eye on their internal email, and scrutinize what employees are saying to each other. It is easy to see that some companies may find that scrutinising staff e-mail can have more than one advantage for a company management. Originally instigated to avoid liability, reading employee's e-mail can also serve to alert management of dishonesty, disloyalty or even matters like union activity. 8. Electronic Databases The computer age has brought surveillance into a new era in which information about almost anybody is available to almost anybody.
    • Databases from Human Identification There are a lot of government databases containing information about almost every resident in United States and in many European Countries as well. A variety of person identification techniques are available, which can assist in associating data with them. Important examples of these techniques are: names (what the person is called by other people) codes (what the person is called by the organization) knowledge (what the person knows) biometrics (what the person is, does, or looks like e.g. appearance, natural physiography, etc.) Data bases for financial surveillance Financial records are gathered privately by several giant companies that specialize in this sort of information. These "credit reporting bureaus" purportedly maintain credit records, but in fact keep far more than credit information in their databases. Other databases for human identification There exist specialized databases available mainly to private investigators. These call information from telephone directories, city directories, voter registration records and many other public and private records to provide a profile of the person being investigated. 9. The Internet The Internet, which began as a Computer communication network between Universities and laboratories decades ago, has turned into a vast public forum accessible to anyone with a computer. International organizations, Public authorities, Companies, Universities, Research centers and individuals have access and exploit the Internet. On the other hand Internet became: an entertainment tool a huge Information source an important marketing tool
    • a big virtual electronic market with a considerable number of economic transactions every second IT technology at the same time, restricted the individuals' right to privacy since they could be identified through their ID number or through their records or transactions. The growing rift between the needs of Internet Commerce and the individual's right to privacy gave rise to the development of new tools. In January 1999 Intel announced its plans for the development of a microchip containing embedded electronic serial numbers that allow individual computers to be readily identified. The identities, similar to the unique vehicle identification numbers on cars and trucks would be a caller ID technology for computer. But critics see it is on an ominous development, ushering in a new period of electronic surveillance. Privacy experts fear the new Intel chip could mean the death of anonymity on the Internet. But this would appear to really variously endanger privacy on the Internet by creating a permanent ID number for every Intel user on the Net. 3. THE USE OF SURVEILLANCE TECHNOLOGY SYSTEMS FOR THE TRANSMISSION AND COLLECTION OF ECONOMIC INFORMATION As the Internet and other communication systems reach further into the everyday lives, national security, low enforcement and individual privacy have become perilously intertwined. Governments want to restrict the free flow of information and software producers are seeking ways to ensure consumers are not bugged from the moment of purchases. All developing communication technologies, digital telephone switches cellular and satellite phones HAVE SURVEILLANCE CAPABILITIES. On the other hand the development of software that contains encryption, a telephone which allows people to scramble their communications and files to prevent others from reading them gourd earth [sic]. 3.1 CALEA system The first effort to heighten surveillance opportunities (made by USA) was to force telecommunication companies to use equipment desired to include enhanced wiretapping capabilities. In the late 1980s in a program known internally as "Operation Root Canal" US low enforcement officials demanded that telephone companies alter their equipment to facilitate the interception of
    • messages. The companies refused but, after several years of lobbying, Congress enacted the Communications Assistance for Law Enforcement ACT (CALEA) in 1994. CALEA requires that terrestrial cellular phone services and other entities ensure that all their equipment, facilities or services are capable of expeditiously, enabling the government to intercept all wire and oral communications varied by the carrier concurrently with their transmission. Communications must be interceptable in such a form that they could be transmitted to a remote government facility. Manufactures must work with industry and low enforcement officials to ensure that their equipment meets federal standards. The passage of CALEA has been controversial, but its provisions have yet to be enforced due to FBI efforts to include even more rigorous regulations under the law. These include: the requirement, the cell phones allow for location - tracking on demand and that telephone companies provide capacity for up to 50.000 simultaneous wiretaps. CALEA finally has been accepted as an International standard in US. In 1991 the FBI contacted EU member states in order to propose to them do incorporate CALEA into European Law. This plan according to an EU report, was to call for the Western World (EU, US and allies) to agree to norms and procedures and then sell their products to Third World countries. There is a council resolution that was adopted on 17 January 1997 on the lawful interception of communications (961C329/a). The US government is now in negotiations with the International Telecommunications Unit (ITU) to adopt the standards globally. 3.2 ECHELON Connection The previous STOA Interim Study (PE 166.499) entitled "An Appraisal of technologies of political control" made certain statements concerning the ECHELON global surveillance system. This is reported to be a world-wide surveillance system designed and coordinated by the US NSA (National Security Agency) that intercepts e-mail, fax, telex and international telephone communications carried via satellites and has been operating since the early 1980s - it is part of the post Cold War developments based on the UK-USA agreement signed between the UK, USA, Canada, Australia and New Zealand in 1948. The five agencies said to be involved are: the US National Security Agency (NSA), the Government Communications Security Bureau (GCSB) in New Zealand, Government Communications Headquarters Signals Directorate (DSD) in Australia. The system was brought to light by the author Nicky Hager in his 1996 book Secret Power: New Zealand's role in the International Spy Network. For this, he interviewed more than 50 people who work or have worked in intelligence who are concerned at the uses of ECHELON. It is said that "The ECHELON system is not designed to eavesdrop on a particular individual's e-mail or fax link. Rather, the system works by indiscriminately intercepting very large quantities of communications and using computers to identify and extract messages from the mass of unwanted ones".
    • According to Interim Study (PE 166.499) of 1998, there are reported to be three components to ECHELON: 1. The monitoring of Intelsats, international telecommunications satellites used by phone companies In most countries. A key ECHELON station is at Morwenstow in Cornwall monitoring Europe, the Atlantic and the Indian Ocean. 2. ECHELON interception of non-Intelsat regional communication satellites. Key monitoring stations are Menwith Hill in Yorkshire and Bad Aibling in Germany. 3. The final element of the ECHELON system is the surveillance of land-based or under-sea systems, which use cables or microwave tower networks. At present it is thought ECHELON's effort is primarily directed at the "written form" (e-mails, fixes, and telexes) but new satellite telephones system which take over from old land-based ones will be as vulnerable as the "written word". Each of the five centres supply to the other four "Dictionaries" of keywords, phrases, people and places to 'stag" and tagged intercept is forwarded straight to the requesting country. It is the interface of the ECHELON system and its potential development on phone calls combined with the standardisation of"tappable" telecommunications centres and equipment being sponsored by the EU and the USA which presents a truly global threat over which there are no legal or democratic controls. The earlier study (PE 166.499) identified a number of options for the European Union, centred round the proposition that: "All surveillance technologies, operations and practices should be subject to procedures to ensure democratic accountability and there should be proper codes of practice to ensure redress if malpractice or abuse takes place. Explicit criteria should be agreed for deciding who should be targeted for surveillance and who should not, how such data is stored, processed and shared. Such criteria and associated codes of practice should be made publicly available." Other points included: - All requisite codes of practice should ensure that new surveillance technologies are brought within the appropriate data protection legislation. - Given that data from most digital monitoring systems can be seamlessly edited, new guidance should be provided on what constitutes admissible evidence. This concern is particularly relevant to automatic identification systems which will need to take cognizance of the provisions of Article 15, of the 1995 European Directive on the Protection of Individuals and Processing of Personal Data.
    • - Regulations should be developed covering the provision of electronic bugging and tapping devices to private citizens and companies, so that their sale is governed by legal permission rather than self regulation. - Use of telephone interception by Member states should be subject to procedures of public accountability referred to in (1) above. Before any telephone interception takes place a warrant should be obtained in a manna prescribed by the relevant parliament. In most cases, law enforcement agencies will not be permitted to self-authorise interception except in the most unusual of circumstances which should be reported back to the authorising authority at the earliest opportunity. - Annual statistics on interception should be reported to each member states' parliament. These statistics should provide comprehensive details of the actual number of communication devices intercepted and data should be not be aggregated. (This is to avoid the statistics only identifying the number of warrants, issued whereas organisations under surveillance may have many hundreds of members, all of whose phones may be subject to interception). - Technologies facilitating the automatic profiling and pattern analysis of telephone calls to establish friendship and contact networks should be subject to the same legal requirements as those for telephone interception and reported to the relevant member state parliament. - The European Parliament should reject proposals from the United States for making private messages via the global communications network (Internet) accessible to US Intelligence Agencies. Nor should the Parliament agree to new expensive encryption controls without a wide ranging debate within the EU on the implications of such measures. These encompass the civil and human rights of European citizens and the commercial rights of companies to operate within the law, without unwarranted surveillance by intelligence agencies operating in conjunction with multinational competitors. 3. Inhabitant identification Schemes Inhabitant identification schemes are schemes, which provide all, or most people in the country with a unique code and a token (generally a card) containing the code. Such schemes are used in many European Countries for a defined set of purposes, typically the administration of taxation, natural superannuation and health insurance. In some countries, they are used for multiple additional purposes. 4. THE NATURE OF ECONOMIC INFORMATION SELECTED BY SURVEILLANCE TECHNOLOGY SYSTEMS A. From telecommunication systems Concerning public authorities and organizations:
    • secret telephone conversations, fax messages and electronic mail sensitive information concerning taxation information concerning various fund transfers especially from one service to the other and financial transactions data used in the critical banking infrastructure systems Concerning business: private business communication, including telephone conversations, fax messages and electronic mail order from fund transfers and other financial transactions (e.g. payments by credit cards by fax) sensitive business information and trade secrets Concerning individuals: private conversations, fax messages, e-mail payments by credit cards secret information concerning taxation B. From new information technologies (Internet) Concerning public authorities and organizations: sensitive information and state secrets tele-banking tax records and other financial information data used in the operation of critical infrastructure systems public contracts received by electronic mail Concerning business: contracts invoices and other official documents secret electronic transactions
    • risk of international property and license in secret transactions payment orders by credit cards payments received on-line Concerning consumers and individuals: payment by credit cards payment on-line contracts and agreements electronic financial transactions (e.g. tele-banking). C. Some examples of data collection on tSe Internet Data can be collected over the Internet either directly or indirectly; in other words, it can be collected either at the time of contact with a correspondent or without the knowledge of the person concerned, often automatically. The nature of the data collected varies according to the protocol used on the network i.e. according to the type of service. In practice, different protocols are very often used in combination to augment the profitability or quality of exchanges. For example, a Web page may propose an exchange of correspondence or a transfer of documents via links with the e-mail protocol and the protocol used for transferring files, which is more powerful. When electronic messaging is used (Simple Mail Transfer Protocol -- SMTP, and Network News Transfer Protocol -- NNTP), communication is established from one personal mailbox to another, or between a personal mailbox and a mailbox common to a number of correspondents. The information transmitted consists of the name and e-mail address, the server address and the signature file (sig.file) if created by the user of the machine. If a communication is addressed to a joint mailbox, this information is given out to an indeterminate number of correspondents, participation in a discussion group being theoretically free. As a result, any person listed on a distribution list can at the very least obtain the e-mail addresses of all other listed parties, since this information is provided automatically for purposes of communication on a given topic. While most downloading (File Transfer Protocol -- FTP) is done anonymously, with only the network's Internet Protocol -- IP -- address being revealed, the same cannot be said for document presentation (World Wide Web -- WWW, Hyper Text Transfer Protocol -- HTTP). The minimum information revealed at each step in the Web is the name of the network machine making the request and the type of browser being used. Browsers contain an identification -- ID - - file which, is configured by the user or at the user's request, stores various personal data such as the user's name or e-mail address. If a Web server requests this information, it can be automatically given out.
    • A Web server can also send out information, which is stored by the user's navigator (so-called 'cookies') and retrieved at a subsequent connection to the server. This system indicates that a visitor has been there before, but without revealing his identity: identification requires matching with other information. As a result, when linked to the ID file incorporated into the browser and transmitted to a server, the information recorded in cookies c-an yield valuable user profiles. It can be noted, however, that some navigations -- to a varying and often inadequate extent -- allow use of these cookies to be blocked. 5. PROTECTION FROM ELECTRONIC SURVEILLANCE A. Encryption (Cryptography) Finally, new information technologies include the privacy of individuals, the security of data in the computer or on the network, and the availability of encryption software to protect data in the event they are intercepted. In this context, privacy refers to controlling the dissemination and use of data, including information that are unintentionally revealed as a by-product of the use of the information technologies themselves. Security refers to the integrity of the data storage, processing, and transmitting systems and includes concerns about the reliability of the hardware and software, the protections against intrusion into the theft of the computer equipment, and the resistance of computer systems to infiltration by unpermitted users, that is, "hacking". Encryption is the practice of encoding data so that even if a computer or network is compromised, the data's content will remain secret. Security and encryption issues are important because they are central to public confidence in networks and to the use of the systems for the sensitive or secret data, such as the processing of information touching on national security. These issues are surpassingly controversial because of governments' interest in preventing digital information from being impervious to official interception and decoding for low enforcement and other purposes. Private sector initiatives A large number of private sector interests, in the United States in particular, are attempting, a view to fostering electronic commerce, to promote technological solutions that will provide a a1 practical response to consumers concerns while still preserving business interests. In other words, they are starting to explore ways and means of making privacy work in communication networks. These initiatives go in the right direction and it would be worthwhile for governments to engage in a dialogue on the basis. As an example, Netscape joined by Microsoft, is leading an industry initiative (40 companies) to cope with privacy issues and proposes standard software intended to enable computer users to control what personal information is obtained when they visit Internet sites and how the information is used, as well as avoid unwanted e-mail. The proposal, called the OPS -- Open Profiling Standard --, which has been submitted to the World Wide Web Consortium -- W3C, provides the users with a way to pre-package the personal registration information Web sites
    • may require. At the same time, OPS lets users control when and how much of their personal profiles can be passed to a third party. OPS would have users fill out profiles and preference information in a standard that could be identified by a digital certificate (that would give a guarantee from a trusted third party that the person is really who they say they are). The standardized format and brand names associated with the profile forms would be incorporated, in the case of Netscape, into the Communicator browser. According to some specialists, OPS is an addition to rather than replacement for the intrusive cookie method of tracking user information. Another project is the new W3C Platform for Privacy Preferences (P3) Project developed by the W3C. The P3 Project is a platform on which other technological, market and regulatory solutions can interoperate and build. The P3 prototype allows Web sites to easily describe their privacy practices as well as users to set policies about the collection and use of their personal data. A flexible 'negotiation' between the Web site's practices and the user's preferences allows service to offer the preferred level of service and data protection to the user. If there is a match, access to the site is seamless; otherwise the user is notified of the difference and is offered other access options to proceed. With P3, users can download 'recommended' settings established by organizations such as industry associations and consumer advocacy groups. According to some privacy specialists, P3 requires users to disclose privacy preferences when good privacy policies should provide meaningful information for users about Web site practices and not require users to disclose personal information. Techniques to provide users with more information about privacy practices are also being developed. For instance, a number of companies and service operators have a privacy Icon which appears either when the user enters a site, or when the user starts to provide information. The Icon can either lead by hyper-link to a sophisticated service providing details of the company's (service operator) data protection policies and a tick box(es) allowing the user to opt out of having his/her data used foe specific purposes, or the icon can lead to page referring the user, for example, to an address from which further details are available. Another example is the development of services and branding techniques, which intend to provide, dear meaningful designations for privacy practices such as TRUSTe, formerly eTRUST. The TRUSTe program will focus on addressing privacy issues concerning data collection on the Internet. With an emphasis on analysing consumer fears surrounding electronic commerce, the program will utilise Web site icons (trustmarks) to alert online consumers to the uses of their personal information. To further consumer privacy the TRUSTe program will utilise a standardised method of informed consent. A branded system of 'trustmarks' or logos, representing the Web site's information privacy policy for users' personal information, will alert consumers to how the information they reveal online will be used. The three trustmarks will be: No Exchange - no personally identifiable information is used by the site.
    • One-to-one Exchange is collected only for the site owner's use. Third Party Exchange - data is collected and provided to specified third parties but only with the user's knowledge and consent. The TRUSTe initiative was launched in July 1996 by the Electronic Frontier Foundation (EFF) and a group of pioneering Internet companies. CommerceNet and the EFF then partnered in October 1996 to move forward in implementing the initiative. TRUSTe is a global, non-profit initiative to establish trust and confidence in electronic communication by creating an infrastructure to address online privacy issues. Comprised of premier members from the electronic commerce industry, the program assures consumer privacy through a progressive policy of informed consent utilising a branded system of 'trustmarks', which represent a company's online information privacy policy. Finally, systems for implementing on-line E-mail Preference Services (EPS) or 'E-mail Robinson Lists' are also under consideration (EPS allow consumers who do not wish to receive e-mails to be excluded from lists, the common database used to register opt out demands being then used to clean marketing lists). As an example, a software package is being developed in the USA which would allow consumers to register on-line; would be secure from intruders, and yet user-friendly for industry to clean their E-mail marketing lists; and which could be serviced easily by the operator (the Direct Marketing Association (DMA-US)). A similar system will be developed in the United Kingdom, and it is planned that these two countries would then spearhead a Global Convention on EPS inviting other DMSs to join. Another proposal, which has yet to be fully considered by industry, comes from the UK data protection Registrar, which has suggested a mechanism enabling the consumers to indicate if they do not wish to be contacted be e-mail in their e-mail address. A universally agreed character (a marker) would indicate that the user does not want to receive any marketing solicitations. The user would also be free to make different choices: i.e. to use the marker when visiting one site and not to use it when visiting another. This system should be combined with others, such as the proposed E-mail Preference Service. B. Key-recovery Cryptography is a complex area, with scientific, technical, political, social, business, and economic dimensions. For the purpose of this report, 'key recovery' systems are characterized by the presence of some mechanism for obtaining exceptional access to the plain text of encrypted traffic. Key recovery might serve a wide spectrum of access requirements, from a backup mechanism that ensures a business' continued access to its own encrypted archive in the event keys are lost, to providing covert law enforcement access to wiretapped encrypted telephone conversations. Many of the costs, risks, and complexities inherent in the design, implementation, and operation of key recovery systems depend on the access requirements around which the system is designed.
    • We focus specifically on key recovery systems designed to meet government access specifications. These specifications diverge in important ways from the needs of commercial or individual encryption users: Access without end-user knowledge or consent -- Few commercial users need (or want) covert mechanisms to recover keys or plain text data they protect. On the contrary, business access rules are usually well known, and audit is a very important safeguard against fraud and error. Government specifications require mechanisms that circumvent this important security practice. Ubiquitous adoption -- Government seeks the use of key recovery for all encryption, regardless of whether there is benefit to the end-user or whether it makes sense in context. In fact, there is little or no demand for key recovery for many applications and users. For example, the commercial demand for recovery of encrypted communications is extremely limited, and the design and analysis of key recovery for certain kinds of communications protocols is especially difficult. Fast paths to plain text -- Law enforcement demands fast (near real-time), 24-hour-a-day, 365- day-a-year access to plain text, making it impossible to employ the full range of safeguards that could ameliorate some of the risks inherent in commercial key recovery systems. Encryption and the global information infrastructure The Global Information Infrastructure promises to revolutionize electronic commerce, reinvigorate government, and provide new and open access to the information society. Yet this promise cannot be achieved without information security and privacy. Without a secure and trusted infrastructure, companies and individuals will become increasingly reluctant to move their private business or personal information online. The need for information security is widespread and touches all of us, whether users of information technology or not. Sensitive information of all kinds is increasingly finding its way into electronic form. Examples include: Private personal and business communications, including telephone conversations, fax messages, and electronic mail; Electronic funds and other financial transactions; Sensitive business information and trade secrets; Data used in the operation of critical infrastructure systems such as air traffic control, the telephone network or the power grid; and Health records, personnel files, and other personal information. Electronically managed information touches almost every aspect of daily life in modern society. This rising tide of important yet unsecured electronic data leaves our society increasingly
    • vulnerable to curious neighbors, industrial spies, rogue nations, organized crime, and terrorist organizations. Paradoxically, although the technology for managing and communicating electronic information is improving at a remarkable rate, this progress generally comes at the expense of intrinsic security. In general, as information technology improves and becomes faster, cheaper, and easier to use, it becomes less possible to control (or even identify) where sensitive data flows, where documents originated, or who is at the other end of the telephone. The basic communication infrastructure of our techniques more and more frequently will become the only visible approach to assuring the privacy and safety of sensitive information as these trends continue. Encryption is an essential tool in providing security in the information age. Encryption is based on the use of mathematical procedures to scramble data so that it is extremely difficult -- if not virtually impossible -- for anyone other than authorized recipients to recover the original 'plain text'. Properly implemented encryption allows sensitive information to be stored on insecure computers or transmitted across insecure networks. Only parties with the correct decryption 'key' (or keys) are able to recover the plain text information. Highly secure encryption can be deployed relatively cheaply, and it is widely believed that encryption will be broad}y adopted and embedded in most electronic and communications products and applications for handling potentially valuable data. Applications of cryptography include protecting files from theft or unauthorized access, securing communications from interception, and enabling secure business transactions. Other cryptographic techniques can be used to guarantee that the contents of a file or message have not been altered (integrity), to establish the identity of a party (authentication), or to make legal commitments (non- repudiation). In making information secure from unwanted eavesdropping, interception, and theft, strong encryption has an ancillary effect: it becomes more difficult for law enforcement to conduct certain kinds of surreptitious electronic surveillance (particularly wiretapping) against suspected criminals without the knowledge and assistance of the target. This difficulty is at the core of the debate over key recovery. Key-Recovery: Requirements and proposals The United States and other national governments have sought to prevent widespread use of cryptography unless 'key recovery' mechanisms guaranteeing law enforcement access to plain text are built into these systems. The requirements imposed by such government-driven key recovery systems are different from the features sought by encryption users, and ultimately impose substantial new risks and costs. Key recovery encryption systems provide some form of access to plain text outside of the normal channel of encryption and decryption. Key recovery is sometimes also called 'key escrow'. The term 'escrow' became popular in connection with the U.S. government's Clipper Chip initiative, in which a master key to each encryption device was held 'in escrow' for release to law enforcement. Today the term 'key recovery' is used as generic term for these systems,
    • encompassing the various 'key escrow', 'trusted third party', 'exceptional access', 'data recovery', and 'key recovery' encryption systems introduced in recent years. Although there are differences between these systems, the distinctions are not critical for our purposes. In this report, the general term 'key recovery' is used in a broad sense, to refer to any system for assuring third- party (government) access to encrypted data. Key recovery encryption systems work in a variety of ways. Early 'key escrow' proposals relied on the storage of private keys by the U. S. government, and more recently by designated private entities . Other systems have 'escrow agents' or 'key recovery agents' that maintain the ability to recover the keys for a particular encrypted communication session or stored file; these systems require that such 'session keys' be encrypted with the key known by a recovery agent and included with the data. Some systems split the ability to recover keys among several agents. Many interested parties have sought to draw sharp distinctions among the various key recovery proposals. It is certainly true that several new key recovery systems have emerged that they can be distinguished from the original 'Clipper' proposal by their methods of storing and recovering keys. However, our discussion takes a higher-level view of the basic requirements of the problem rather than the details of any particular scheme; it does not require a distinction between 'key escrow', 'trusted third-party', and 'key recovery'. All these systems share the essential elements that concern us for the purposes of this study: A mechanism, external to the primary means of encryption and decryption, by which a third party can obtain covert access to the plain text of encrypted data. The existence of a highly sensitive secret key (or collection of keys) that must be secured for an extended period of time. Taken together, these elements encompass a system of 'ubiquitous key recovery' designed to meet law enforcement specifications. While some specific details may change, the basic requirements most likely will not: they are the essential requirements for any system that meets the stated objective of guaranteeing law enforcement agencies timely access, without user notice, to the plain text of encrypted communications traffic. 6. SURVEILLANCE TECHNOLOGY SYSTEMS IN LEGAL AND REGULATORY CONTEXT As a conclusion from this present Interim Study is the principle that WE HAVE TO CONSIDER PRIVACY PROTECTION IN THE CONTEXT OF A GLOBAL NETWORKED SOCIETY. And when we speak about electronic privacy in the exchange of economic information, we are speaking about one single thing above all others: Electronic Commerce over the Internet. A. Privacy regulation Multinational data protection measures
    • Enactment of data protection laws by individual European nations has been paralleled and, in some cases anticipated, by multinational actions. In 1980 the Committee of Ministers of the Organization for Economic Cooperation and Development (OECD) issued Guidelines on the Protection of Privacy and Transborder Flows of Personal Data (guidelines). The guidelines outline basic principles for both data protection and the free flow of information among countries that have laws conforming with the protection principles. The guidelines, however, have no blinding force and permit broad variation in national implementation. One year after the OECD issued its guidelines, the Council of Europe promulgated a convention, For the Protection of Individuals with Regard to Automatic Processing of Personal Data. The convention, which took effect in 1985, is similar to the guidelines, although it focuses more on the importance of data protection to protect personal privacy. The convention specifies that data must be obtained and processed fairly; used and stored only for legal purposes; adequate, relevant, and not excessive in relation to the purpose for which they are processed; accurate and up-to-date; and stored no longer than necessary. The document gives individuals the right to inquire about the existence of data files concerning them; obtain a copy of that data; and have false or improperly processed data corrected or erased. The convention requires each of the member countries (now twenty-six) to enact conforming national laws. By 1992, however, when debate over the more detailed European Union data protection directive, discussed below, overtook the convention, only ten countries -- Austria, Denmark France, Germany, Ireland, Luxembourg, Norway, Spain Sweden and the United Kingdom -- had ratified the convention, while eight -- Belgium, Cyprus, Greece, Island, Italy, Netherlands, Portugal and Turkey -- had signed without ratification. The Council of Europe subsequently urged all European Union member states to ratify and implement the convention when it endorsed the European Commission's proposal for a data protection directive. By 1997, all of the fifteen EU member states (except Greece, which is currently considering a privacy bill) and Switzerland have national legislation consistent with the convention. Nevertheless, the resulting protection for personal privacy is far from uniform, for at least three reasons. First, some of the national data protection legislation existed before the adoption of the convention. Second, the convention was not self-executing and therefore permitted each country to implement its national laws conforming to the government's terms in very different ways. Finally, the convention did not include definitions for important terms, such as what constitutes an 'adequate' level of data protection; as result, member countries were left free to adopt their own, inconsistent definitions in their national legislation. Data protection directive in Europe Although, legal protection for a 'right of privacy' originated in the United States, Europe was the site of the first privacy legislation and has been the source of most comprehensive privacy regulation. Europe is the site of the first privacy legislation, the earliest national privacy statute, and now the most comprehensive protection for information privacy in the world. That protection reflects on apparent consensus within Europe that privacy is a fundamental human right which few in any
    • other rights equal. In the context of European history and civil law culture, that consensus makes possible extensive, detailed regulation of virtually all activities concerning 'any information relating to an identified or identifiable natural person'. It is difficult to imagine a regulatory regime offering any greater protection to information privacy, or greater contrast to U.S. law. As a result of the variation and uneven application among national laws permitted by both the guidelines and the convention, in July 1990 the commission of the then-European Community (EC) published a draft Council Directive on the Protection of Individuals with Regard to the Processing of Personal Data and on Free Movement of Such Data The draft directive was part of the ambitious program by the countries of the European Union to create not merely the 'common market' and 'economic and monetary union' contemplated by the Treaty of Rome, but also the potential union embodied in the Treaty on European Union signed in 1992 in Maastricht. The shift from economic to broad-based political union brought with it new attention to the protection of information privacy. On March 1 1, 1992, the European Parliament amended the commission's proposal to eliminate the distinction in the 1990 draft between public and private sector data protection and then overwhelmingly approved the draft directive. On October 15, 1992, the commission issued its amended proposal; on February 20, 1995, the Council of Ministers adopted a Common Position with a View to Adopting Directive 95/46/EC of the European Parliament and of the Council on the Protection of Individuals with Regard to the Processing of Personal Data and on the Free Movement of Such Data. The directive was formally approved on October 24, 1995, and took effect three years later. Privacy regulation in the United States The protection for the information privacy in the United States is disjoined, inconsistent, and limited by conflicting interests. There is no explicit constitutional guarantee of a right to privacy in the United States. Although the Supreme Court has fashioned a variety of rights out of the Bill of Rights and the Fourteenth Amendment, 'information privacy' has received little protection, primarily based on the Fourth and Fourteenth Amendments. In the Fourth Amendment arena, the Court has found constitutional violations when the police have searched for or seized records without a warrant or meeting one of the exceptions to the warrant requirement. The Court, however, has written that the Fourth Amendment privacy right has little application outside of the context of the investigation and prosecution of criminal activity. Moreover, this protection against such searches does not extend to information controlled by a third person. Under the Fourteenth Amendment, the Court has recognized a constitutional right restricting the government from compelling individuals to disclose certain personal information. This right protects only the interest of an individual in not disclosing certain information, and that right is evaluated under intermediate scrutiny, as opposed to the strict scrutiny required when fundamental rights are at stake As with all constitutional rights, these apply only against the government, not private actors. The requirement for state action and the 'negative' nature of constitutional rights require only that the government refrain from taking actions that impermissibly invaded individuals' information privacy rights, not that the government take steps to affirmatively protect those rights. The Constitution also requires, however, that the government avoid actions that infringe other rights
    • enumerated therein, such as the protection for expression in the Fifth Amendment, the government cannot take private property, whether by physical occupation or extensive regulation, without according due process and paying just compensation to the owner. Outside of the constitutional arena, protection for information privacy relies on hundreds of federal and state laws and regulations, each of which applies only to a specific category of information user (such as the government or retailers of videotapes), context (applying for credit or subscribing to cable television), type of information (criminal records or financial information), or use for that information (computer matching or impermissible discrimination). PrivacY laws in 49 the United States most often prohibit certain disclosures, rather than collection, use, or storage, of personal information. When those protections extend to the use of personal information, it is often as a by-product of legislative commitment to another goal, such as eliminating discrimination. And the role provided for the government in most U. S. privacy laws is often limited to providing a judicial form for resolving disputes. Passage of the privacy provisions in the Cable Communications Policy Act, and recent passage of the Consumer Credit Reporting Reform Act and the CPNI provision of the Telecommunications Act, demonstrate that Congress can enact serious privacy protection, even if limited to narrow sectoral environments. The later two acts and the expanding debate in Washington over the privacy evince the growing attention to the development of laws and regulations to protect privacy. However, as the limits and exceptions within existing privacy laws indicate, privacy protection in the United States is fundamentally in tension with other cherished values. The legal regulation of privacy is significantly influenced by the importance placed by society on the prevention of crime and prosecution of criminals, free expression and an investigatory press, the acquisition and use of property, and a limited role for government involvement in daily life. A comparison of the legal regimes of the EU and the United States suggests that the Europe privacy is more valued and less in conflict with other widely shared values. B. Protection of Privacy in the telecommunications sector Directive 97/66/EC of the European Parliament and the Council of the 15 December 1997 concerns the processing of personal data and the protection of privacy in the telecommunications sector. This directive provides for the harmonisation of the provisions of the member states required to ensure an equivalent level of protection of fundamental rights and freedom, and in particular the right to privacy, with respect to the processing of personal data in the telecommunications sector and to ensure the free movement of such data and telecommunications equipment and services in the Community. The provision of this directive particularises and complements the directive 95/46/EC for the purpose mentioned above. Moreover they provide for protection and legitimate interests of subscribers who are legal persons.
    • This directive shall not apply to the activities which fall outside the scope of Community law, such as those provided for by titles V and VI of the treaty on European Union, and in any case to activities concerning public security, defence, state security (including the economic well being of the state when the activities relate to state security matters) and the activities of the state in areas of criminal law. C. Cryptography Cryptography policy in USA It is part of the strategy to ensure that police and intelligence agencies could understand every communication they intercepted. They attempted to impede the development of cryptography and other security measures, fearing that these technologies would reduce their ability to monitor the emissions of foreign governments and to investigate crime. A survey by the Global Internet Liberty Campaign (GILC) found that most countries either rejected domestic controls or not addressed the issue at all. The GILC found that many countries, large and small, industrialised and developing, seem to be ambivalent about the need to control encryption technology. The FBI and the National Security Agency (NSA) have instigated efforts to restrict the availability of encryption world-wide, in the early 1970s, the NSA's pretext was that encryption technology was 'born classified' and, therefore, it dissemination fell into the same category as the diffusion of A-bomb materials. The debate went underground until 1993 when the US launched the Clipper Chip, an encryption device designed for inclusion in consumer products. The Clipper Chip offered the required privacy, but the government would remain a 'pass- key' -- anything encrypted with the chip could be read by government agencies. Behind the scenes, law enforcement and intelligence agencies were pushing hard for a ban on other forms of encryption. In a February 1993 document, obtained by the Electronic Privacy Information Centre (EPIC), recommended 'Technical solutions, such as they are, will only work if they are incorporated into all encryption products. To ensure that this occurs, legislation mandating the use of government-approved encryption products, or adherence to government encryption criteria'. The Clipper Chip was widely criticised by industry, public interest groups, scientific societies and the public and, though it was officially adopted, only a few were ever sold or used. From 1994 onwards, USA began to woo private companies to develop an encryption system that would provide access to keys by government agencies. Under the proposals -- variously known as 'key recovery' or 'trusted third parties' -- the key would be held by a corporation, not a government agency, and would be designed by the private sector, not the NSA. The systems, however, still entitled the assumption of guaranteed access to the intelligence community and so proved as controversial used export incentives to encourage companies to adopt key escrow
    • products: they could export stronger encryptions but only if they ensured that intelligence agencies had access to the keys. Under US law, computer software and hardware cannot be exported if it contains encryption that the NSA cannot break. The regulations stymie the availability of encryption in the USA because companies are reluctant to develop two separate product lines - one, with strong encryption, for domestic use and another, with weak encryption, for the international market. Several cases are pending in the US courts on the constitutionality of export controls; a federal court recently ruled that they violate free speech rights under the First Amendment. The FBI has not let up on efforts to ban products on which it cannot eavesdrop. In mid-1997, it introduced legislation to mandate that key-recovery systems be built into all computer systems. Several congressional committees adopted the amendment but the Senate preferred a weaker variant. A concerted campaign by computer, telephone and privacy groups finally stopped the proposal; it now appears that no legislation will be enacted in the current Congress. Cryptography policy guidelines from OECD The organisation for Economic Co-operation and Development in 1997 issued a report on cryptography policy entitled: CRYPTOGRAPHY POLICY: THE GUIDELINES AND THE ISSUES (OCOE / GD (97) 204). The basic principles (each of which addresses an important policy concern) are independent and should be considered as a whole so as to balance the various interests. The principles are: Trust in cryptographic methods: Users should be trustworthy in order to generate confidence in the use of information and commercial data. Choice of Cryptographic methods: Users should have a right to choose any cryptographic method, subject to applicable law. Market driven development of cryptographic methods: Cryptographic methods should be developed in response to the needs, demands and responsibilities of individuals, business and governments. Standards for cryptographic methods: Technical standards, criteria and protocols for cryptographic methods should be developed and promulgated at the national and international law. Protection of privacy and Personal data: the fundamental rights of individuals, to privacy, including secrecy of communications and protection of personal data, should be respected in national cryptography policies and in the implementation and use of cryptographic methods. Lawful access: National cryptography policies may allow lawful access to plain text, or cryptographic keys, of encrypted data. These policies must respect the other principles contained in the guidelines to the greatest extent possible.
    • Liability: whether established by contract on legislation, the liability of individuals and entities that offer cryptographic services or hold or access cryptographic keys should be clearly stated. International co-operation: Governments should cooperate to coordinate cryptography policies. As part of this effort, governments should remove, or avoid creating in the name of cryptography policy, unjustified obstacles to trade. Given the role of cryptography in the information and communications infrastructure and in developing electronic commerce, cryptography policy has the broader perspective to overlap with economic, legal and political aspects of a number of information systems, protection of privacy and personal data and intellectual property protection. E.U. cryptography policy Led by the Germany and the Scandinavians, the EU has been generally distrustful of key escrow technology. In October 1997, the European Commission released a report entitled: 'Towards a European Framework of Digital Signatures and Encryption', ensuring security and trust in electronic communications (COM (97)503 final) which advised: 'Restricting the use of encryption could well prevent law-abiding companies and citizens from protecting themselves against criminal attacks. It would not, however, totally prevent criminals from using these technologies'. The report noted that 'privacy considerations suggest limit the use of cryptography as a means to ensure data security and confidentiality'. Some European countries have or are contemplating independent restrictions. France had a longstanding ban on the use of any cryptography to which the government does not have access. However, a 1996 law, modifying the existing system, allows a system of tiers du confidence, although it has not been implemented because of EU opposition. In 1997, the Conservative government in the UK introduced a proposal creating a system of trusted third parties. It was severely criticised at the time and by the new Labour government, which has not yet acted upon its predecessor's recommendations. 0 The debate over encryption and the conflicting demands of security and privacy are bound to continue. The commercial future of the Internet depends on a universally-accepted and foolproof method of on-line identifications; as of now, the only means of providing it is through strong encryption. This put the US government and some of the world's largest corporations, notably Microsoft, on a collision course. Other national and international activities related to cryptography policy Cryptographic products and technologies have historically been subject to export controls. The current basis for export controls in the Wassenaar Arrangement on Export Controls for Conventional Arms and Dual-Use Goods and Technologies (agreed on 13 July 1996), which includes cryptography products on its control lists for export. The Agreement is implemented in national regulations. Regulation [(EC) 3381/94] and Decision [94/942/PESC] of the Council of the European Union of 19 December 1994 on the control of the export of dual-use goods are also applicable to the export of cryptographic products.
    • The Council of Europe has developed considerable resources to studying the subject of computer-related crime, issuing the Recommendation [R(95)13] of the Council of Europe of 11 September 1995 concerning problems of criminal procedural law connected with information technology, and is considering suggesting an international convention to address the issue. Such a convention could address matters such as exchange of information among government agencies in case involving the use of cryptography. At the G7 Summit meeting on anti-terrorism in July 1996, G7 governments announced that consultations would be accelerated, 'in appropriate bilateral or multilateral for a, on the use of encryption that allows, when necessary, lawful government access to data and communication in order, inter alia, to prevent or investigate acts of terrorism, while protecting the privacy of legitimate communications'. In May 1996 the US National Research Council's Computer Science and Telecommunications Board published the report 'Cryptography's Role in Securing the Information Society'. This interagency study assesses the effect of cryptographic technologies on US national security, law enforcement, commercial and privacy interests, and reviews the impact of export controls on cryptographic technologies. This authoritative report provides a comprehensive review of the cryptography policy issues faced by the US Government. C. Key recovery As of mid-1998 a wide range of government, industry, and academic efforts toward specifying, prototyping, and standardising key recovery system that meet government specifications have been implemented. Some of industry's efforts were stimulated by U.S. government policies that offer more favorable export treatment to companies that commit to designing key recovery features into the future products, and by U.K. government moves to link the licensing of certification authorities to the use of key recovery software. Yet despite these incentives, and the intense interest and effort by research and development teams, neither industry nor government has yet produced a key recovery architecture that universally satisfies both the demands of government and the security and cost requirements of encryption users. The commercial key recovery products in existence today do not reconcile the conflict between commercial requirements and government specifications. In the absence of government pressure, commercial key recovery features are by their nature of interest primarily to business operations willing to pay a significant premium to ensure continued access to stored data maintained only in applications of encryption (such as communication traffic) are known in advance not to require recoverability and therefore would not be designed to use a key recovery system. Another problem is that the most secure and economical commercial key recovery do not support the real-time, third-party, covert access sought by governments in order to support surveillance. In particular, 'self-escrow' by an individual does not meet government access demands. The third-party nature and global reach implied by these government demands make key recovery systems a much more difficult, expensive, and risky proposition than a facility for internal, off-
    • line recovery in business enterprise. For example, most organizations keep backups in the form of plain text on magnetic media in physically protected premises. Similarly, organizations that keep encrypted data might naturally be best served by storing backup keys in a bank safe deposit box. A requirement for near-real-time access would preclude this approach, however prudent or appropriate. Any access-time requirement carries with it special risks. In particular, some sort of network technology will generally be required. Such a network, which must link a large number of law enforcement agencies with different key recovery centers, would be extraordinarily difficult to secure. The current attention in the U.S. on the problem of securing critical infrastructure, such as telephone networks, power grids, national banking networks and air traffic control systems, underscores the problem of managing risk in key recovery. The system that support critical infrastructure, which are increasingly reliant on open networks and information systems, are among the most important current and future applications of cryptography. The complexity and increased risk introduced with key recovery would make critical infrastructure protected by cryptography more vulnerable to the kinds of sophisticated attackers that pose the most serious threats to these systems. Government specifications for key recovery systems for export approval are focused on the easier problem of ensuring that keys are recoverable when authorized. They do not address or give techniques for the far harder problem of ensuring against unauthorized disclosure of data. The design and construction of prototype key recovery systems that satisfy government specifications for export, therefore, are not sufficient to demonstrate that these systems can be operated securely, in an economical manner, on a large scale, or without introducing unacceptable new risks. Any assessment of a proposed system must take into account a broad range of design, implementation, operation, and policy considerations. As of mid-1998, we are aware of no key recovery proposals that have undergone analysis of the kind required. On the other hand, as our report notes, there are compelling reasons to believe that, given the state of the art in cryptography and secure systems engineering, government- access key recovery is not compatible with large scale, economical, secure cryptography systems. D. European Initiatives DLM-FORUM -- Electronic Records The first multidisciplinary European DLM-Forum (DLM-Forum'96) on electronic records which took place in Brussels between the 18th and 20th December 1996 was a major event in the investigation of possibilities for wider co-operation in this area both between Member States and at Community level. It was initiated by the experts' report Archives in the European Union (Report of the Group of Experts on the Coordination of Archives. Brussels - Luxembourg: OPOCE 1994) and confirmed by the EU-Council Conclusions of June 1994 (94/C 235/03). Organised by the European Commission in close co-operation with the EU member states it hosted more than 300 experts and decision-makers from public administration, archives, industry
    • (hard- and software suppliers) and research. The multidisciplinary approach and the aim to publish guidelines on machine readable data as a concrete result as well as the high quality of the presentations were the attractions that turned this inaugural event into a European forum of international interest in the field of electronic records administration and storage. Participants came from all the EU member states, from other European countries (including the Russian Federation and Poland), as well as from Canada and the USA. First reviews that have been published by specialised journals are unanimously enthusiastic. The forum's success owed a lot to the Programme Committee's preparations and should also be attributed to the undivided and continuous support of the Irish and Dutch presidencies of the EU- Council. The forum was opened by the Secretary General of the European Commission, David Williamson who emphasised that archives, including increasingly electronic documents, are our collective memory and how important it is to retain that memory and to insure that it remains accessible in the future. In their keynote addresses the Deputy Director General of the Directorate General for Science, Research and Development, Hendrik Tent and the Permanent Representative of Ireland to the European Union, H.E. Ambassador Denis O'Leary laid out the political and technical framework of the DLM-Forum'96. Mr Tent described the importance of the forum with respect to innovation in the digital era and the Commission's approach towards this challenge. Mr O'Leary stressed the role of archives in our society and the citizens' right of access to information. In his closing speech the Head of Commissioner Bangemann's Cabinet, Paul Weissenberg, pointed to the importance of electronic archives in the European Union's concept of the Information Society as set out in the Bangemann report and subsequent documents. He stressed the necessity of concrete measures as an immediate consequence to the DLM-Forum. The 'life-cycle'-concept of electronic records guided the three parallel sessions. Thus the speakers in those sessions reflected on electronic documents in the different phases of their administrative life. The multitude of topics ranged from discussions of norms and standards for data interchange to the presentation of new electronic storage material. Surveys on the 'state of the art' in Europe completed this first interdisciplinary approach to retaining the collective memory of the Information Society. It was the balance between working sessions and spontaneous and informal discussions outside those sessions that produced a most agreeable working atmosphere in which experts' debates led to the kind of mutual understanding and the establishment of personal ties and relations needed to solve problems that concern all the disciplines represented at the forum. Thus the catalyst effect, which was hoped for, was achieved: experts from industry and research became sensitive to the concerns of archives and administrations. The forum will lead, as foreseen, to amendments to the first draft of multidisciplinary guidelines Best practices for using Machine Readable Data which had been distributed to the participants. Furthermore a document for follow-up measures, the so-called '10 points', was agreed on by the participants. One major topic for follow-up activities is the establishment of national focal points
    • to improve co-ordination and networking and to establish functional requirements for electronic records management in the public and private sectors. Another topic concerns the urge for establishing training programmes for archivists and administrators. In a world of continuous and rapid change modern archives services are an element of continuity, stability and a solid base for essential information and indispensable records. Modern management in public and private institutions has to be dynamic, active and innovative, and above all has to cover the entire continuum of the life of documents. 'The DLM-Forum'96 demonstrated that the issues posed by the preservation and re-use of electronic records are central not only to the work of archivists, but also form the cornerstone of future economic growth and development within the European Union.' as Seamus Ross points out in his presentation. In short: the problem of preserving electronic records concerns even more people and areas than have been covered by the forum's participants. Further activities should include among others legal advisors, system designers and application developers, auditors and insurance providers. Contacts with existing working groups (e.g. the European Commission's Legal Advisory Board for the information market) have to be established or intensified. A first step to co-ordinate these activities is the installation of the DLM-Monitoring Committee in April 1997. Promoting safe Use of Internet To prevent illegal and harmful content being distributed on the Internet the European Commission is promoting initiatives which are aimed at increasing the general awareness among parents, teachers, public sector and the information industry about how to deal with the issue in practical terms. This action accompanies the Green Paper on Protection of Minors and Human Dignity in Audiovisual and Information Services, the Communication on Illegal and Harmful Content on the Internet, and the Action plan on promoting safe use of the Internet. REFERENCES 1. STOA, PE 166499: "An appraisal of technologies of political control", 1998. 2. R. Clarke: Dataveillance: Delivering "1984", Xamax Consultancy Pty Ltd, February 1993. 3. R. Clarke: Introduction to Dataveillance and Information Privacy and Definitions of Terms, Xamax Consultancy Pty Ltd, October 1998. 4. R. Clarke: A Future Trace on Dataveillance: Trends in the Anti-Utopial Science Fiction Genre, Xamax Consultancy Pty Ltd. March 1993. 5. T. Dixon: Workplace video surveillance - controls sought, Privacy law and Policy Reporter, 2 PLPR 141, l995.
    • 6. T. Dixon: Privacy charter sets new benchmark in privacy protection, Privacy law and Policy Reporter, 2 PLPR 41. 1995. 7. D. Banisar and S. Davies: The code war, Index online, News Analysis, issue 1998. 8. T. Lesce: They're Watching You! The Age of Surveillance, Breakout Productions, 1998. 9. W.G. Staples: The Culture of Surveillance, St. Martin's Press, 1997. 10. D. Lyon and E. Zureik: Computers, Surveillance and privacy, University of Minnesota Press, 1996. 11. D. Lyon: The Electronic Eye - The rise of Surveillance Society, University of Minnesota Press. 1994. 12. F.H. Cate: privacy in the Information Age, Brookings Institution Press, 1997. 13. P. Brookes: Electronic Surveillance Devices, Newnes, 1998. 14. O.E.C.D.: Privacy Protection in a Global Networked Society, DSTI/ICCPAREG(98)5/FINAL, July 1998. 15. O.E.C.D.: Implementing the OECD "Privacy Guidelines" in the Electronic Environment: Focus on the Internet, DSTI/ICCP/REG(97)6/FINAL, September 1998. 16. O.E.C.D.: Cryptography policy: The Guidelines and the issues, OCDE/GD(97)204, 1997. 17. Report By an Ad Hoc Group of Cryptographers and Computer Scientists: The Risks of Key Recovery, Key Escrow, and Trusted Third Party Encryption, 1998. 18. COM(98) 586 final: Legal framework for the Development of electronic Commerce. 19. COM(98) 297 final: Proposal for a European Parliament and Council Directive on a common framework for electronic signatures, OJ C325, 23/10/98. 20. A. Troye-Walker, European Commission: Electronic Commerce: EU policies and SMEs, August 1998. 21. COM(97) 503 final: Ensuring security and trust in electronic communications - Towards a European Framework for Digital Signatures and Encryption. 22. Directive 97/7/EC of the European Parliament and the Council of May 1997 on the protection of Consumers in respect of Distance Contracts. OJ L 144. 14/6/1997. 23. ISPO: Electronic Commerce - Legal Aspects. http://www.ispo.cec.be .
    • 24. Privacy International: http://www.privacy.org . 25. Newton and Mike: Picturing the future of CCTV, Security Management, November 1994. 26. Gips and A. Michael: Tie Spy, Security Management, November 1996. 27. Clarke and Barry: Get Carded With Confidence, Security Management, November 1994. 28. Horowitz and Richard: The Low Down on Dirty Money, Security Management, October 1997. 29. Cellular E-911 Technology Gets Passing Grade in NJ Tests, Law Enforcement News, July - August 1997. 30. Shannon and Elaine: Reach Out and Waste Someone, Time Digital, July August 1997. 31. Thompson, Army, Harowitz, and Sherry: Taking a Reading on E-mail Policy, Security Management, November 1996. 32. Trickey and L. Fried: E-mail Policy by the Letter, Security Management, April 1996. 33. Net Proceeds, Law Enforcement News, January 1997. 34. Burrell, and Cassandra: Lawmen Seek Key to Computer Criminals, Associated Press, July 10, 1997, Albuquerque Journal. 35. Gips and A. Michael: Security Anchors CNN, Security Management, September 1996. 36. Bowman and J. Eric: Security Tools up for the Future, Security Management, January 1996. 37. E. Alderman and C. Kennedy: The right to Privacy, Knopf 1995. 38. Bennet and J. Colin: Regulating Privacy -- Data protection and public Policy in Europe and the United States, Cornell University Press, 1992 39. BeVier and R Lillian: Information about Individuals in the Hands of Government -- Some reflections on Mechanisms for Privacy Protection, William and Mary Bill of Rights Journal 4, Winter 1995. 40. Branscomb and A. Well: Who owns Information? From Privacy to Public Access, Basic Books 1994 41. Branscomp: Global Governance of Global Networks, Indiana Journal of Global Legal studies, Spring 1994.
    • 42. Network Wizards, Internet Domain Survey, January 1997, http://www.nw.com/zone/WWW/report.html . 43. Network Wizards, Internet Domain Survey, January 1997, http://nw.com/zone/WWW/lisybynum.html . 44. Simon Davis: report, December 1997, http://www.telegraph.co.uk . 45. Francis S. Chlapowski: The Constitutional Protection of Information Privacy: Boston University Law Review, January 1991. 46. Ibid., p. 35. 47. Ibid., p. 45. 48. Ibid., p. 48. 49. Ibid., p. 57 50. Ibid., p. 82. 51. Ibid., p. 276. 52. Ibid., p. 267. 53. J. Guisnel: Guerres dans le cyberspace, Editions la decouverte, 1995. 54. http://www.dis.org . 55. http://www.telegraph.co.uk . STOA PROGRAMME European Parliament Directorate-General for Research Directorate A SCH 4/61 L-2929 Luxembourg Tel: +352 4300 22511 Fax:+352 4300 22418 rholdsworth@europarl.eu.int
    • LEO 6 D46 Rue Wiertz 60 B-1047 Bruxelles Tel: +32 2 284 3962 Fax:+32 2 284 9059 msosa@europarl.eu.int Digitization and HTML by JYA/Urban Deadline. Closed-circuit television From Wikipedia, the free encyclopedia "CCTV" redirects here. For the Chinese television network, see China Central Television. For the Irish television station, see Cork Community TV. Surveillance cameras on the corner of a building. Dome CCTV cameras.
    • Closed-circuit television (CCTV) is the use of video cameras to transmit a signal to a specific place, on a limited set of monitors. It differs from broadcast television in that the signal is not openly transmitted, though it may employ point to point (P2P), point to multipoint, or mesh wireless links. Though almost all video cameras fit this definition, the term is most often applied to those used for surveillance in areas that may need monitoring such as banks, casinos, airports, military installations, and convenience stores. Videotelephony is seldom called "CCTV" but the use of video in distance education, where it is an important tool, is often so called.[1][2] In industrial plants, CCTV equipment may be used to observe parts of a process from a central control room, for example when the environment is not suitable for humans. CCTV systems may operate continuously or only as required to monitor a particular event. A more advanced form of CCTV, utilizing digital video recorders[3] (DVRs), provides recording for possibly many years, with a variety of quality and performance options and extra features (such as motion-detection and email alerts). More recently, decentralized IP cameras, some equipped with megapixel sensors, support recording directly to network-attached storage devices, or internal flash for completely stand-alone operation. Surveillance of the public using CCTV is particularly common in many areas around the world. Contents 1 History 2 Uses o 2.1 Crime prevention o 2.2 Prevalence o 2.3 Hacking and video art o 2.4 Industrial processes o 2.5 Traffic monitoring o 2.6 Transport safety o 2.7 Control of retail o 2.8 Outside the United Kingdom o 2.9 Criminal use 3 Privacy 4 Technological developments o 4.1 Computer controlled analytics and identification o 4.2 Retention, storage and preservation o 4.3 Closed-circuit digital photography (CCDP) o 4.4 IP cameras o 4.5 Networking CCTV cameras o 4.6 Integrated systems o 4.7 Wireless security cameras 5 CCTV camera vandalism 6 Forensic Data Recovery of CCTV 7 See also 8 References 9 Further reading 10 External links
    • History Closed circuit TV in Munich, 1973 photo Sign warning that premises are watched by CCTV cameras. The first CCTV system was installed by Siemens AG at Test Stand VII in Peenemünde, Germany in 1942, for observing the launch of V-2 rockets.[4] The noted German engineer Walter Bruch was responsible for the technological design and installation of the system. In the U.S. the first commercial closed-circuit television system became available in 1949, called Vericon. Very little is known about Vericon except it was advertised as not requiring a government permit.[5] The earliest systems required constant monitoring because there was no way to record and store the information. Recording systems would be introduced later, when primitive reel-to-reel media was used to preserve the data, where the magnetic tapes had to be changed manually. It was a time consuming, expensive and unreliable process; the operator had to manually thread the tape from the tape reel through the recorder onto an empty take-up reel. Due to these efforts, video surveillance was rare. Only when VCR technology became available in the 1970s, which made it easy to record and erase information, did video surveillance start to become much more common.[6] CCTV recording systems are still often used at modern launch sites to record the flight of the rockets, in order to find the possible causes of malfunctions,[7][8] while larger rockets are often fitted with CCTV allowing pictures of stage separation to be transmitted back to earth by radio link.[9]
    • The history of CCTV in the United States varies from that of the United Kingdom. One of its first appearances was in 1973 in Times Square in New York City.[10] The NYPD installed it in order to deter crime that was occurring in the area however crime rates did not appear to drop much due to the cameras.[10] Nevertheless, during the 1980s video surveillance began to spread across the country specifically targeting public areas.[11] It was seen as a cheaper way to deter crime compared to increasing the size of the police departments.[10] Some businesses as well, especially those that were prone to theft, began to use video surveillance.[10] During the 1990s digital multiplexing, which allowed for several cameras at once to record, and introduced time lapse and motion only recording, increased the use of CCTV across the country[11] and increased the savings of time and money. From the mid-1990s on, police departments across the country installed an increasing number of cameras in various public spaces including housing projects, schools and public parks departments.[10] Following the September 11 attacks, the use of video surveillance has become a common occurrence in the country to deter future terrorist attacks.[10] In September 1968, Olean, New York was the first city in the United States to install video cameras along its main business street in an effort to fight crime.[12] CCTV later became very common in banks and stores to discourage theft, by recording evidence of criminal activity. Their use further popularised the concept. The first place to use CCTV in the United Kingdom was King's Lynn, Norfolk.[13] In recent decades, especially with general crime fears growing in the 1990s and 2000s, public space use of surveillance cameras has taken off.[citation needed] Uses Crime prevention The two year-old James Bulger being led away by his killers, recorded on shopping centre CCTV in 1993. This narrow-bandwidth television system had a low frame rate.
    • Experiments in the UK during the 1970s and 1980s (including outdoor CCTV in Bournemouth in 1985), led to several larger trial programs later that decade.[13] These were deemed successful in the government report "CCTV: Looking Out For You", issued by the Home Office in 1994, and paved the way for a massive increase in the number of CCTV systems installed. Today, systems cover most town and city centres, and many stations, car-parks and estates. A 2009 analysis by Northeastern University and the University of Cambridge, "Public Area CCTV and Crime Prevention: An Updated Systematic Review and Meta-Analysis," examined 44 different studies that collectively surveyed areas from the United Kingdom to U.S. cities such as Cincinnati and New York. The analysis found that: 1. Surveillance systems were most effective in parking lots, where their use resulted in a 51% decrease in crime; 2. Public transportation areas saw a 23% decrease in crimes; 3. Systems in public settings were the least effective, with just a 7% decrease in crimes overall. When sorted by country, however, systems in the United Kingdom accounted for the majority of the decrease; the drop in other areas was insignificant.[14] The results from the above 2009 "Public Area CCTV and Crime Prevention: An Updated Systematic Review and Meta-Analysis",[14][15] are somewhat controversial.[16] Earlier similar meta-analysis completed by Walsh and Farrington in 2002 showed similar results: a significant decrease in car park crime (41%), and a non-significant decrease of crime in public transit and public places.[17] This study was criticised for the inclusion of confounding variables (e.g. notification of CCTV cameras on site, improved street lighting) found in the studies analyzed (including car park studies). These factors could not be teased apart from the effect of CCTV cameras being present or absent while crimes were being committed.[15][16] Thus, a combination of factors might be important for the decrease in crime not just the CCTV cameras. The 2009 study admitted to similar problems as well as issues with the consistency of the percentage of area covered by CCTV cameras within the tested sites (e.g. car parks have more cameras per square inch than public transit).[15] There is still much research to be done to determine the effectiveness of CCTV cameras on crime prevention before any conclusions can be drawn. There is strong anecdotal evidence that CCTV aids in detection and conviction of offenders; indeed UK police forces routinely seek CCTV recordings after crimes.[18] Moreover CCTV has played a crucial role in tracing the movements of suspects or victims and is widely regarded by antiterrorist officers as a fundamental tool in tracking terrorist suspects. Large-scale CCTV installations have played a key part of the defences against terrorism since the 1970s. Cameras have also been installed on public transport in the hope of deterring crime,[19][20] and in mobile police surveillance vans, often with automatic number plate recognition, and a network of APNI- linked cameras is used to manage London's congestion charging zone. Even so there is political hostility to surveillance and several commentators downplay the evidence of CCTV's effectiveness, especially in the US.[21] However, most of these assertions are based on poor methodology or imperfect comparisons.[22] A more open question is whether most CCTV is cost- effective. While low-quality domestic kits are cheap the professional installation and
    • maintenance of high definition CCTV is expensive.[23] Gill and Spriggs did a Cost Effectiveness Analysis (CEA) of CCTV in crime prevention that showed little monetary saving with the installation of CCTV as most of the crimes prevented resulted in little monetary loss.[16] It was however noted that benefits of non-monetary value cannot be captured in a traditional Cost Effectiveness Analysis and were omitted from their study.[16] To get a full understanding of the costs and benefits of CCTV in crime prevention these factors would have to be included. A 2008 Report by UK Police Chiefs concluded that only 3% of crimes were solved by CCTV.[24] In London, a Metropolitan Police report showed that in 2008 only one crime was solved per 1000 cameras.[25] In some cases CCTV cameras have become a target of attacks themselves.[26] Closed-circuit video cameras in the Navy Yard complex caught gunman Aaron Alexis during his shooting rampage. On July 22, 2005, Jean Charles de Menezes was shot dead by police at Stockwell tube station. According to brother Giovani Menezes, "The film showed that Jean did not have suspicious behaviour" .[27] Because of the bombing attempts the previous day, some of the tapes had been supposedly removed from CCTV cameras for study, and they were not functional.[28] An ongoing change to DVR-based technology may in future stop similar problems occurring.[29] In October 2009, an "Internet Eyes" website was announced which would pay members of the public to view CCTV camera images from their homes and report any crimes they witnessed. The site aimed to add "more eyes" to cameras which might be insufficiently monitored. Civil liberties campaigners criticized the idea as "a distasteful and a worrying development".[30] In 2013 Oaxaca hired deaf police officers to lip read conversations to uncover criminal conspiracies.[31] Prevalence An article published in CCTV Image magazine estimates that the number of cameras in the UK is 1.85 million. The number is based on extrapolating from a comprehensive survey of public and private cameras within the Cheshire Constabulary jurisdiction.[32] This works out as an average of one camera for every 32 people in the UK, although the density of cameras varies greatly from
    • place to place. The Cheshire report also claims that the average person on a typical day would be seen by 70 CCTV cameras. The Cheshire figure is regarded as more dependable than a previous study by Michael McCahill and Clive Norris of UrbanEye published in 2002.[33] Based on a small sample in Putney High Street, McCahill and Norris estimated the number of surveillance cameras in private premises in London at around 500,000 and the total number of cameras in the UK at around 4,200,000. According to their estimate the UK has one camera for every 14 people. Although it has been acknowledged for several years that the methodology behind this figure is somewhat dubious,[34] it has continued to be quoted in the absence of a better figure. The CCTV User Group estimates that there are around 1.5 million CCTV cameras in city centres, stations, airports, major retail areas and so forth. This figure does not include the smaller surveillance systems such as those that may be found in local corner shops[35] and is therefore broadly in line with the Cheshire report. Research conducted by the Scottish Centre for Crime and Justice Research and based on a survey of all Scottish local authorities, identified that there are over 2,200 public space CCTV cameras in Scotland.[36] Hacking and video art Hackers and guerrilla artists have exposed the vulnerabilities of the video systems in an act dubbed "video sniffing"[37][38] They have crossed feeds, uploaded their own video feeds and used the video footage for artistic purposes. Industrial processes Industrial processes that take place under conditions dangerous for humans are today often supervised by CCTV. These are mainly processes in the chemical industry, the interior of reactors or facilities for manufacture of nuclear fuel. Special cameras for some of these purposes include line-scan cameras and thermographic cameras which allow operators to measure the temperature of the processes. The usage of CCTV in such processes is sometimes required by law.[specify] Traffic monitoring Main article: Traffic camera Many cities and motorway networks have extensive traffic-monitoring systems, using closed- circuit television to detect congestion and notice accidents.[39] Many of these cameras however, are owned by private companies and transmit data to drivers' GPS systems. The UK Highways Agency has a publicly owned CCTV network of over 1,200 cameras covering the English motorway and trunk road network. These cameras are primarily used to monitor traffic conditions and are not used as speed cameras. With the addition of fixed cameras for the
    • Active Traffic Management system, the number of cameras on the Highways Agency's CCTV network is likely to increase significantly over the next few years.[citation needed] The London congestion charge is enforced by cameras positioned at the boundaries of and inside the congestion charge zone, which automatically read the licence plates of cars. If the driver does not pay the charge then a fine will be imposed. Similar systems are being developed as a means of locating cars reported stolen.[citation needed] Other surveillance cameras serve as traffic enforcement cameras.[citation needed] Transport safety Digital Video Recorder for Public Transport A CCTV system may be installed where an operator of a machine cannot directly observe people who may be injured by some unexpected machine operation. For example, on a subway train, CCTV cameras may allow the operator to confirm that people are clear of doors before closing them and starting the train.[citation needed] Operators of an amusement park ride may use a CCTV system to observe that people are not endangered by starting the ride. A CCTV camera and dashboard monitor can make reversing a vehicle safer, if it allows the driver to observe objects or people not otherwise visible.[citation needed] Control of retail Some software integrates with CCTV to monitor the actions of workers in retail environments. Every action is recorded as an information block with subtitles that explain the performed operation. This helps to track the actions of workers, especially when they are making critical financial transactions, such as correcting or cancelling of a sale, withdrawing money or altering personal information.[citation needed] Actions which an employer may wish to monitor could include[citation needed] : Scanning of goods, selection of goods, introduction of price and quantity; Input and output of operators in the system when entering passwords; Deleting operations and modifying existing documents; Implementation of certain operations, such as financial statements or operations with cash; Moving goods, revaluation scrapping and counting; Control in the kitchen of fast food restaurants; Change of settings, reports and other official functions.
    • Each of these operations is transmitted with a description, allowing detailed monitoring of all actions of the operator. Some systems allow the user to search for a specific event by time of occurrence and text description, and perform statistical evaluation of operator behaviour. This allows the software to predict deviations from the standard workflow and record only anomalous behaviour.[citation needed] Outside the United Kingdom A surveillance camera, aimed at a public street (Kungsgatan) in Stockholm, Sweden, mounted on top of the pole. The use of CCTV in the United States is more common, and increasing, and generally meets the same amount of opposition. In the last few years particularly, the percentage of people in the U.S. having installed a security- camera system has increased dramatically. Global Security Solutions with the help of Zone Tech Systems first announced the launch of IP surveillance in the U.S. security industry by partnering up with Axis Communications (an IP pioneer). Today's CCTV market has transformed the shift towards IP-based security products and systems.[citation needed] In Latin America, the CCTV market is growing rapidly with the increase of property crime.[40]
    • Surveillance camera mounted on the walls of Rosenbad, one of the Swedish's government buildings in central Stockholm, which houses the Prime Minister's office. One of the parliament's (Riksdagen) building can be seen in the background. Criminal use Criminals may use surveillance cameras to monitor the public. For example, a hidden camera at an ATM can capture people's PINs as they are entered, without their knowledge. The devices are small enough not to be noticed, and are placed where they can monitor the keypad of the machine as people enter their PINs. Images may be transmitted wirelessly to the criminal.[41] Privacy A mobile closed-circuit TV van monitoring a street market Opponents of CCTV point out the loss of privacy of the people under surveillance, and the negative impact of surveillance on civil liberties. Furthermore, they argue that CCTV displaces crime, rather than reducing it. Critics often dub CCTV as "Big Brother surveillance", a reference to George Orwell's novel Nineteen Eighty-Four, which featured a two-way telescreen in every home through which The Party would monitor the populace. Civil liberties campaign group Big Brother Watch have published several research papers into CCTV systems. In December 2009, they released a report documenting council controlled CCTV cameras.[42] Proponents of CCTV cameras have argued that the cameras are not intruding into people's privacy, as they are not surveilling private, but public space, where an individual's right to privacy can reasonably be weighed against the intended benefits of surveillance.[43] However, both the United States Supreme Court in Katz v. United States and anti-surveillance activists have held that there is a right to privacy in public areas.[44][45] Furthermore, while it is true that there may be scenarios wherein a citizen's right to public privacy can be both reasonably and justifiably compromised, some scholars have argued that such situations are so rare as to not sufficiently warrant the frequent compromising of public privacy rights that occurs in regions with widespread CCTV surveillance. For example, in her book Setting the Watch: Privacy and
    • the Ethics of CCTV Surveillance, Beatrice von Silva-Tarouca Larsen argues that CCTV surveillance is ethically permissible only in "certain restrictively defined situations", such as when a specific location has a "comprehensively documented and significant criminal threat" (p. 160). Her central reasoning is that widespread CCTV surveillance violates citizens' rights to privacy and anonymity within the public sphere by jeopardizing both their liberty and dignity. She concludes that CCTV surveillance should therefore be reserved for specific circumstances in which there are clear and reasonably demonstrated benefits to its implementation and few ethical compromises.[46] Questions are also raised about illegal access to CCTV recordings. The Data Protection Act 1998 in the United Kingdom led to legal restrictions on the uses of CCTV recordings, and also mandated their registration with the Data Protection Agency. In 2004, the successor to the Data Protection Agency, the Information Commissioner's Office clarified that this required registration of all CCTV systems with the Commissioner, and prompt deletion of archived recordings. However, subsequent case law (Durant vs. FSA) has limited the scope of the protection provided by this law, and not all CCTV systems are currently regulated.[47] Private sector personnel in the UK who operate or monitor CCTV devices or systems are now considered security guards and have been made subject to state licensing. A 2007 report by the UK's Information Commissioner's Office, highlighted the need for the public to be made more aware of the "creeping encroachment" into their civil liberties created by the growing use of surveillance apparatus. A year prior to the report Richard Thomas, the Information Commissioner, warned that Britain was "sleepwalking into a surveillance society".[citation needed] In 2007, the UK watchdog CameraWatch claimed that the majority of CCTV cameras in the UK are operated illegally or are in breach of privacy guidelines.[citation needed] In response, the Information Commissioner's Office denied the claim adding that any reported abuses of the Data Protection Act are swiftly investigated.[48] The UK Home Office recently published a code of practice for the use of surveillance cameras by local authorities to help ensure it is "characterised as surveillance by consent, and such consent on the part of the community must be informed consent and not assumed by a system operator. Surveillance by consent should be regarded as analogous to policing by consent."[49] In Canada, the use of video surveillance has grown very rapidly. In Ontario, both the municipal and provincial versions of the Freedom of Information and Protection of Privacy Act [50] outline very specific guidelines that control how images and information can be gathered by this method and or released. Technological developments
    • Surveillance camera at London Heathrow Airport with a wiper for clear images during rain Computer controlled analytics and identification Today’s High-definition CCTV cameras have many computer controlled technologies that allow them to identify, track, and categorize objects in their field of view.[citation needed] Video Content Analysis (VCA) is the capability of automatically analyzing video to detect and determine temporal events not based on a single image. As such, it can be seen as the automated equivalent of the biological visual cortex. A system using VCA can recognize changes in the environment and even identify and compare objects in the database using size, speed, and sometimes colour. The camera’s actions can be programmed based on what it is “seeing”. For example; an alarm can be issued if an object has moved in a certain area, or if a painting is missing from a wall, or if a smoke or fire is detected, or if running people are detected, or if fallen people are detected and if someone has spray painted the lens, as well as video loss, lens cover, defocuss and other so called camera tampering events.[citation needed] VCA analytics can also be used to detect unusual patterns in a videos environment. The system can be set to detect anomalies in a crowd of people, for instance a person moving in the opposite direction in airports where passengers are only supposed to walk in one direction out of a plane or in a subway where people are not supposed to exit through the entrances.[51] VCA also has the ability to track people on a map by calculating their position from the images. It is then possible to link many cameras and track a person through an entire building or area. This can allow a person to be followed without having to analyze many hours of film. Currently the cameras have difficulty identifying individuals from video alone, but if connected to a key- card system, identities can be established and displayed as a tag over their heads on the video.[citation needed] There is also a significant difference in where the VCA technology is placed, either the data is being processed within the cameras (on the edge) or by a centralized server. Both technologies have their pros and cons.[52]
    • Facial recognition system Is a computer application for automatically identifying or verifying a person from a digital image or a video frame from a video source. One of the ways to do this is by comparing selected facial features from the image and a facial database.[citation needed] The combination of CCTV and facial recognition has been tried as a form of mass surveillance, but has been ineffective because of the low discriminating power of facial recognition technology and the very high number of false positives generated. This type of system has been proposed to compare faces at airports and seaports with those of suspected terrorists or other undesirable entrants.[citation needed] Eye-in-the-sky surveillance dome camera watching from a high steel pole Computerized monitoring of CCTV images is under development, so that a human CCTV operator does not have to endlessly look at all the screens, allowing an operator to observe many more CCTV cameras.[citation needed] These systems do not observe people directly. Instead, they track their behavior by looking for particular types of body-movement behavior, or particular types of clothing or baggage. To many, the development of CCTV in public areas, linked to computer databases of people's pictures and identity, presents a serious breach of civil liberties. Critics fear the possibility that one would not be able to meet anonymously in a public place or drive and walk anonymously around a city.[53] Demonstrations or assemblies in public places could be affected as the state would be able to collate lists of those leading them, taking part, or even just talking with protesters in the street. Retention, storage and preservation Most CCTV systems record and store digital video and images to a Digital Video Recorder or in the case of IP cameras directly to a server, either on-site or offsite.[citation needed]
    • The amount of data stored and the retention period of the video or pictures are subject to compression ratios, images stored per second, image size and duration of image retention before being overwritten.[54][55] Recordings are usually kept for a preset amount of time and then automatically archived, overwritten or deleted. Videos are kept in order to allow retrieval and review in the event a crime was committed or the information needs to be studied for any number of reasons.[citation needed] Closed-circuit digital photography (CCDP) See also: Closed-circuit television camera Closed-circuit digital photography (CCDP) is more suited for capturing and saving recorded high-resolution photographs, whereas closed-circuit television (CCTV) is more suitable for live- monitoring purposes.[citation needed] However, an important feature of some CCTV systems is the ability to take high resolution images of the camera scene, e.g. on a time lapse or motion-detection basis. Images taken with a digital still camera often have higher resolution than those taken with some video cameras. Increasingly, low-cost high-resolution digital still cameras can also be used for CCTV purposes.[citation needed] Images may be monitored remotely when the computer is connected to a network.[citation needed] IP cameras Main article: IP camera
    • Easy Connect Wireless IP camera A growing branch in CCTV is internet protocol cameras (IP cameras). IP cameras use the Internet Protocol (IP) used by most Local Area Networks (LANs) to transmit video across data networks in digital form. IP can optionally be transmitted across the public internet, allowing users to view their cameras through any internet connection available through a computer or a 3G phone. For professional or public infrastructure security applications, IP video is restricted to within a private network or VPN,[56] or can be recorded onto a remote server. Networking CCTV cameras The city of Chicago operates a networked video surveillance system which combines CCTV video feeds of government agencies with those of the private sector, installed in city buses, businesses, public schools, subway stations, housing projects etc. Even home owners are able to contribute footage. It is estimated to incorporate the video feeds of a total of 15,000 cameras.[citation needed] The system is used by Chicago's Office of Emergency Management in case of an emergency call: it detects the caller's location and instantly displays the real-time video feed of the nearest security camera to the operator, not requiring any user intervention. While the system is far too vast to allow complete real-time monitoring, it stores the video data for later usage in order to provide possible evidence in criminal cases.[57] London also has a network of CCTV systems that allows multiple authorities to view and control CCTV cameras in real time. The system allows authorities including the Metropolitan Police Service, Transport for London and a number of London boroughs to share CCTV images between them. It uses a network protocol called Television Network Protocol to allow access to many more cameras than each individual system owner could afford to run and maintain.[citation needed] The Glynn County Police Department uses a wireless mesh-networked system of portable battery-powered tripods for live megapixel video surveillance and central monitoring of tactical police situations. The systems can be used either on a stand-alone basis with secure communications to nearby police laptops, or within a larger mesh system with multiple tripods feeding video back to the command vehicle via wireless, and to police headquarters via 3G.[citation needed]
    • Integrated systems An integrated systems unit. Integrated systems allow users to connect remotely from the internet and view what their cameras are viewing remotely, similar to that of IP cameras. In one incident in 2009, a lady from Boynton Beach, Florida was able to watch her house get burgled and contacted police directly from her office at work.[58] Wireless security cameras Main article: Wireless security camera Wireless security camera Many consumers are turning to wireless security cameras for home surveillance.[citation needed] Wireless cameras do not require a video cable for video/audio transmission, simply a cable for power. Wireless cameras are also easy and inexpensive to install.[citation needed] Previous generations of wireless security cameras relied on analog technology; modern wireless cameras use digital technology which delivers crisper audio, sharper video, and a secure and interference- free signal.[59] CCTV camera vandalism
    • Unless physically protected, CCTV cameras have been found to be vulnerable against a variety of (mostly illegal) tactics[citation needed] : Some people will deliberately destroy cameras. Some cameras can come with dust-tight, pressurized, explosion proof, and bullet-resistant housings. Spraying substances over the lens can make the image too blurry to be read. Lasers can blind or damage them. However, since most lasers are monochromatic, color filters can reduce the effect of laser pointers. However, filters will also impair image quality and overall light sensitivity of cameras (see laser safety article for details on issues with filters). Also, complete protection from infrared, red, green, blue and UV lasers would require use of completely black filters[citation needed] , rendering the camera useless. Forensic Data Recovery of CCTV A digital video recorder (DVR) of closed-circuit television (CCTV) commonly has an in-built capability to export video files to an optical storage media such as digital versatile disc. In the event that the DVR is damaged, its contents cannot be easily exported. Hence, it is generally accepted that recovering video files with its timestamps from a DVR hard disk using proprietary file format in a forensically sound manner is an expensive and challenging exercise.[citation needed] See also Bugging Closed-circuit television camera Documentary practice Eye in the sky (camera) Fake security camera Information Awareness Office IP camera Physical security Privacy International Proprietary DVR Security Operations Center Security smoke Sousveillance (inverse surveillance) Surveillance Telescreen The Convention on Modern Liberty TV Network Protocol Under vehicle inspection Video analytics Videotelephony Washington County Closed-Circuit Educational Television Project References
    • This article needs additional citations for verification. Please help improve this article by adding citations to reliable sources. Unsourced material may be challenged and removed. (August 2013) 1. Jump up ^ Verman, Romesh. Distance Education In Technological Age, Anmol Publications Pvt. Ltd., 2005, pp.166, ISBN 81-261-2210-2, ISBN 978-81-261-2210-3. 2. Jump up ^ "Distance education in Asia and the Pacific: Proceedings Of The Regional Seminar On Distance Education, 26 November - 3 December 1986", Asian Development Bank, Bangkok, Thailand, Volume 2, 1987 3. Jump up ^ "CCTV Digital Video Recorders (DVRs)". sourcesecurity.com. Retrieved 29 June 2013. 4. Jump up ^ Dornberger, Walter: V-2, Ballantine Books 1954, ASIN: B000P6L1ES, page 14. 5. Jump up ^ "Television Rides Wires" , February 1949, Popular Science small article, bottom of page 179 6. Jump up ^ CCTV Surveillance: Video Practices and Technology 7. Jump up ^ "ET_SRB Cam FS.indd" (PDF). Retrieved 2009-07-22. 8. Jump up ^ "Ecliptic Enterprises Corporation". Eclipticenterprises.com. Archived from the original on July 5, 2008. Retrieved 2009-05-08. 9. Jump up ^ Brent D. Johnson. "Cameras Monitor Rocket Launch". Photonics.com. Retrieved 2009-05-08. 10. ^ Jump up to: a b c d e f *Yesil, Bilge. (2006) “Watching Ourselves” Cultural Studies. Vol 20(4-5) pg. 400-416] 11. ^ Jump up to: a b * Roberts, Lucy. “History of Video Surveillance and CCTV” We C U Surveillance http://www.wecusurveillance.com/cctvhistory Retrieved 2011-10-20] 12. Jump up ^ [Robb, Gary C. (1979) "Police Use of CCTV Surveillance: Constitutional Implications and Proposed Regulations" University of Michigan Journal of Law Reform. pg. 572] 13. ^ Jump up to: a b Staff (August 2007). "CCTV". Borough Council of King's Lynn & West Norfolk. Retrieved 2008-12-14. 14. ^ Jump up to: a b "Public Area CCTV and Crime Prevention: An Updated Systematic Review and Meta-Analysis". Journalist's Resource.org. 15. ^ Jump up to: a b c Walsh B.C.,Farrington D.P. (2009). "Public area CCTV and crime prevention: An updated systematic review and meta-analysis". Justice Quarterly 26 (4): 716–745. doi:10.1080/07418820802506206. 16. ^ Jump up to: a b c d "Assessing the impact of CCTV" (PDF). Retrieved 2011-10-16. 17. Jump up ^ Walsh B.C.,Farrington D.P. (2009). "Effects of closed-circuit television on crime". The Annals of the American Academy of Political and Social Science 587 (1): 110–135. doi:10.1177/0002716202250802. 18. Jump up ^ "Police are failing to recover crucial CCTV footage, new figures suggest.," The Telegraph 19. Jump up ^ "CCTV to drive down cab attacks," BBC 20. Jump up ^ Taxi CCTV cameras are installed," BBC 21. Jump up ^ Baram, Marcus (2007-07-09). "Eye on the City: Do Cameras Reduce Crime?". ABC News. Retrieved 2007-07-10. 22. Jump up ^ "Tens of thousands of CCTV cameras, yet 80% of crime unsolved" by Justin Davenport 2007 23. Jump up ^ "National community Crime Prevention Programme" (PDF). Retrieved 2011-10-16.
    • 24. Jump up ^ "Are CCTV cameras a waste of money in the fight against crime?" The Independent, 7 May 2008 25. Jump up ^ Hughe, Mark (25 August 2009). "CCTV in the spotlight: one crime solved for every 1,000 cameras". Independent News and Media Limited. Retrieved 2009-08-27. 26. Jump up ^ "http://news.bbc.co.uk/," BBC 27. Jump up ^ "Menezes family view CCTV footage," BBC 28. Jump up ^ "Menezes Death 'Cover-Up' Doubted," BBC 29. Jump up ^ "Digital CCTV Scheme Switches On," BBC 30. Jump up ^ Public to Monitor CCTV From Home, BBC 31. Jump up ^ Angels of Silence see crime where others don't Globe & Mail, 20 Nov 2013 32. Jump up ^ "Only 1.85 million cameras in UK, claims ACPO lead on CCTV - SecurityNewsDesk.com". SecurityNewsDesk.com. Retrieved 2011-03-02. 33. Jump up ^ "CCTV in London" (PDF). Retrieved 2009-07-22. 34. Jump up ^ "FactCheck: how many CCTV cameras? - Channel 4 News". Channel4.com. Retrieved 2009-05-08. 35. Jump up ^ "How many cameras are there?". CCTV User Group. 2008-06-18. Retrieved 2009-05- 08. 36. Jump up ^ Bannister, J., Mackenzie, S. and Norris, P. Public Space CCTV in Scotland(2009), Scottish Centre for Crime and Justice Research (Research Report) 37. Jump up ^ Christopher Werth To Watch the Watchers October 20, 2008 Newsweek 38. Jump up ^ Newsweek 39. Jump up ^ Motorway Cameras in England, http://www.motorwaycameras.co.uk[unreliable source?] 40. Jump up ^ "Latin American Physical Security Market Growing Rapidly," 8 October 2009 Security Magazine 41. Jump up ^ "ATM Security". Dedham Savings. Retrieved 2009-04-18. 42. Jump up ^ "Councils 'treble CCTV in decade'". BBC News. 2009-12-18. 43. Jump up ^ Smile, the cameras are here to watch over you - The New Zealand Herald, Tuesday 18 March 2008, Page A14 44. Jump up ^ Katz v. United States, 389 U.S. 347 (1967) 45. Jump up ^ http://www.annarbor.com/community/news/opinion/city_council_should_pass_the_freedom_ from_surveillance_ordinance. Missing or empty |title= (help) 46. Jump up ^ Von Silva-Tarouca Larsen, B. (2011). Setting the watch: Privacy and the ethics of CCTV surveillance. Oxford: Hart Publishing. 47. Jump up ^ "Information Commissioner's Office". Informationcommissioner.gov.uk. Retrieved 2009-05-08. 48. Jump up ^ Majority of UK's CCTV cameras 'are illegal' Telegraph.co.uk 49. Jump up ^ "Surveillance Camera Code of Practice". UK Government Home Office. June 2013. p. 6. Retrieved 1 December 2013. 50. Jump up ^ Freedom of Information and Protection of Privacy Act Text 51. Jump up ^ "MATE's Analytics Integrate with Hirsch Security Systems". Retrieved 2011-03-28. 52. Jump up ^ "Image Processing Techniques for Video Content Extraction" (PDF). Retrieved 2011- 03-28. 53. Jump up ^ Todd Lewan (July 7, 2007). "Microchips in humans spark privacy debate". USAToday. Retrieved 2012-06-07. 54. Jump up ^ "MotionJPEG, JPEG2000, H.264 and MPEG-4 compression methods in CCTV". Retrieved 2011-05-01.
    • 55. Jump up ^ "H.264 compression versus MPEG4 compression for cctv video storage". Retrieved 2011-03-28.[unreliable source?] 56. Jump up ^ "Some IP Cameras Can Be Remotely Monitored With An iPhone And Other Compatible 3G Devices" (PDF). Retrieved 2009-07-22. 57. Jump up ^ "Chicago's Camera Network Is Everywhere", The Wall Street Journal 58. Jump up ^ Kim Segal (April 10, 2009). "Woman watches home invasion on webcam". CNN. Retrieved 2009-05-08. 59. Jump up ^ Digital Video Essentials: Shoot, Transfer, Edit, Share By Erica Sadun. Retrieved 16 October 2013. Further reading Armstrong, Gary, ed. (1999). The maximum surveillance society: the rise of CCTV. Berg (originally, University of Michigan Press). ISBN 9781859732212. Fyfe, Nicholas & Bannister, Jon (2005). "City Watching: Closed-Circuit Television in Public Spaces". In Fyfe, Nicholas & Kenny, Judith T. The Urban Geography Reader. Psychology Press. ISBN 9780415307017. Newburn, Tim & Hayman, Stephanie (2001). Policing, Surveillance and Social Control: CCTV and police monitoring of suspects. Taylor & Francis. ISBN 9781843924692. Norris, Clive (2003). "From Personal to Digital: CCTV, the panopticon, and the technological mediation of suspicion and social control". In Lyon, David. Surveillance as Social Sorting: Privacy, Risk, and Digital Discrimination. Psychology Press. ISBN 9780415278737. External links Wikimedia Commons has media related to Security cameras. Space Shuttle External Tank and Solid Rocket Booster Camera Systems UK Government pro-CCTV campaign Assessing the Impact of CCTV, a UK Home office study on the effectiveness of closed-circuit television The Register story: Face recognition useless for crowd surveillance CCTV Guidance notes from the UK Information Commissioner's Office CBC Digital Archives - The Long Lens of the Law The Urbaneye Project on CCTV in Europe CCTV:Constant Cameras Track Violators National Institute of Justice Journal 249 (2003). Washington, DC: U.S. Department of Justice. Public Space CCTV in Scotland: Results of a National Survey of Scotland's Local Authorities Opinion on Video Surveillance in Public Places by Public Authorities and the Protection of Human Rights and Opinion on Video Surveillance by Private Operators in the Public and Private Spheres and by Public Authorities in the Private Sphere and the Protection of Human Rights, Venice Commission, 2007 Categories:
    • Applications of computer vision Assistive technology Crime prevention Law enforcement techniques Public safety Security engineering Security technology Surveillance Video Warning systems Navigation menu Create account Log in Article Talk Read Edit View history Main page Contents Featured content Current events Random article Donate to Wikipedia Interaction Help About Wikipedia Community portal Recent changes Contact page
    • Tools Print/export Languages ‫ية‬ ‫عرب‬ ‫ال‬ Български Català Čeština Cymraeg Deutsch Español ‫سی‬ ‫ار‬ ‫ف‬ Français Gaeilge Galego 한국어 Hrvatski Bahasa Indonesia Italiano ‫עברית‬ Bahasa Melayu Nederlands 日本語 Norsk bokmål Polski Português Русский Simple English Slovenčina Srpskohrvatski / српскохрватски Suomi Svenska Türkçe Українська Tiếng Việt 粵語 中文 Edit links This page was last modified on 24 January 2014 at 10:02. Text is available under the Creative Commons Attribution-ShareAlike License; additional terms may apply. By using this site, you agree to the Terms of Use and Privacy Policy.
    • Wikipedia® is a registered trademark of the Wikimedia Foundation, Inc., a non-profit organization. Privacy policy About Wikipedia Disclaimers Contact Wikipedia Developers Mobile view